Two interconnected vulnerabilities in 2FAuth version 5.4.1 enable SSRF and URI validation bypass, allowing retrieval of arbitrary URIs and potential server-side request forgery
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
NVD | CVE-2024-52598 | 20 Nov 202415:15 | – | nvd |
Vulnrichment | CVE-2024-52598 2FAuth vulnerable to Server Side Request Forgery + URI validation bypass in 2fauth /api/v1/twofaccounts/preview | 20 Nov 202414:09 | – | vulnrichment |
CVE | CVE-2024-52598 | 20 Nov 202415:15 | – | cve |
[
{
"vendor": "Bubka",
"product": "2FAuth",
"versions": [
{
"version": "< 5.4.1",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo