Lucene search
MitreCVE-2024-29296HistoryApr 10, 2024 - 3:16 p.m.
CVE-2024-29296
2024-04-1015:16:05
CWE-286
mitre
web.nvd.nist.gov
30
cve-2024-29296
portainer
user enumeration
vulnerability
authentication
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
9.0%
A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs during user authentication process, where a difference in response time could allow a remote unauthenticated user to determine if a username is valid or not.
Related
nvd
nvd
CVE-2024-29296
2024-04-10 15:16:05
cvelist
cvelist
CVE-2024-29296
2024-04-10 00:00:00
vulnrichment
vulnrichment
CVE-2024-29296
2024-04-10 00:00:00
redos
redos
ROS-20240816-01
2024-08-16 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-29296