Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2024-07864
HistoryFeb 04, 2024 - 12:00 a.m.

Unspecified vulnerability in vantage6 (CNVD-2024-07864)

2024-02-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
vantage6
security vulnerability
username discovery
response time
privacy preserving
federal learning infrastructure
cnvd-2024-07864

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON

vantage6 is vantage6 open source an open source priVAcy preserviNg federalTed leArningG infrastructure for Secure Insight eXchange. A security vulnerability previously existed in vantage6 version 4.2.0 that stemmed from the ability to find out a username from the response time of a login request. No details of the vulnerability are provided at this time.

Related

cvelist 1
cve 1
veracode 1
prion 1
github 1
nvd 1
osv 5
cvelist
cvelist
CVE-2024-21671 vantage6 username timing attack
2024-01-30 15:43:06
cve
cve
CVE-2024-21671
2024-01-30 16:15:48
veracode
veracode
User Enumeration
2024-01-31 07:01:13
prion
prion
Security feature bypass
2024-01-30 16:15:00
github
github
vantage6 vulnerable to username timing attack
2024-01-30 20:56:48
nvd
nvd
CVE-2024-21671
2024-01-30 16:15:48
osv
osv
vantage6 vulnerable to username timing attack
2024-01-30 20:56:48
PYSEC-2024-31
2024-01-30 16:15:00
vantage6 vulnerable to a username timing attack on recover password/MFA token
2024-03-15 16:44:36

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

17.0%

JSON
Related for CNVD-2024-07864
cvelist1cve1veracode1prion1github1nvd1osv5