Security Advisory

CVE-2024-42164

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-12 11:27:17

Last updated 2024-08-12 13:13:06

Assigner CyberDanube

State PUBLISHED

Description

Insufficiently random values for generating password reset token in FIWARE Keyrock <= 8.4 allow attackers to disable two factor authorization of any user by predicting the token for the disable_2fa link.

← Browse all CVEs View on cve.org ↗