Lucene search

K
cvelistMitreCVELIST:CVE-2021-44155
HistoryDec 13, 2021 - 12:00 a.m.

CVE-2021-44155

2021-12-1300:00:00
mitre
www.cve.org
2
reprise rlm 14.2
login_process
user enumeration
cve-2021-44155

AI Score

5.5

Confidence

High

EPSS

0.041

Percentile

92.4%

An issue was discovered in /goform/login_process in Reprise RLM 14.2. When an attacker attempts to login, the response if a username is valid includes Login Failed, but does not include this string if the username is invalid. This allows an attacker to enumerate valid users.

AI Score

5.5

Confidence

High

EPSS

0.041

Percentile

92.4%

Related for CVELIST:CVE-2021-44155