← voltar
CVE-2022-2166

Improper Restriction of Excessive Authentication Attempts in mastodon/mastodon

CVSS 9.8 CRITICALEPSS 1.0%CWE-307
Improper Restriction of Excessive Authentication Attempts in GitHub repository mastodon/mastodon prior to 4.0.0.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
mastodon · mastodon/mastodon

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/mastodon/mastodon/commit/21fd25a269cca742af431f0d13299e139f267346https://huntr.dev/bounties/2f96f990-01c2-44ea-ae47-58bdb3aa455b