Security Advisory

CVE-2022-45168

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-10 00:00:00

Last updated 2025-03-20 20:34:58

Assigner mitre

State PUBLISHED

Description

An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /login/backup_code endpoint and the /api/v1/vdeskintegration/createbackupcodes endpoint, because the application allows a user to generate or regenerate the backup codes before checking the TOTP.

← Browse all CVEs View on cve.org ↗