Lucene search
PRIOn knowledge basePRION:CVE-2023-49278HistoryDec 12, 2023 - 8:15 p.m.
Information disclosure
2023-12-1220:15:00
PRIOn knowledge base
www.prio-n.com
4
umbraco
asp.net cms
security vulnerability
brute force
usernames
patch
Umbraco is an ASP.NET content management system (CMS). Starting in version 8.0.0 and prior to versions 8.18.10, 10.8.1, and 12.3.4, a brute force exploit can be used to collect valid usernames. Versions 8.18.10, 10.8.1, and 12.3.4 contain a patch for this issue.
| CPE | Name | Operator | Version |
|---|---|---|---|
| umbraco_cms | ge | 12.0.0 | |
| umbraco_cms | lt | 12.3.4 | |
| umbraco_cms | ge | 10.0.0 | |
| umbraco_cms | lt | 10.8.1 | |
| umbraco_cms | ge | 8.0.0 | |
| umbraco_cms | lt | 8.18.10 |
Related
cve
cve
CVE-2023-49278
2023-12-12 20:15:08
github
github
Brute force exploit can be used to collect valid usernames
2023-12-13 13:27:06
nvd
nvd
CVE-2023-49278
2023-12-12 20:15:08
osv
osv
Brute force exploit can be used to collect valid usernames
2023-12-13 13:27:06
CVE-2023-49278
2023-12-12 20:15:08
veracode
veracode
Brute Force Of Valid Usernames
2023-12-13 12:03:36
cvelist
cvelist