3 matches found
CVE-2025-42600 Brute Force Attack Vulnerability in Meon KYC solutions
This vulnerability exists in Meon KYC solutions due to missing restrictions on the number of incorrect One-Time Password OTP attempts through certain API endpoints of login process. A remote attacker could exploit this vulnerability by performing a brute force attack on OTP, which could lead to...
Yubico YubiKey 5 NFC Information Disclosure Vulnerability
Yubico YubiKey 5 NFC is a multi-protocol secret key device supporting NFC Near Field Communication functionality from the Swedish company Yubico. An information disclosure vulnerability exists in the Yubico YubiKey 5 NFC versions 5.0.0 through 5.2.6 and 5.3.0 through 5.3.1. The vulnerability can ...
CVE-2019-7218
Citrix ShareFile before 19.23 allows a downgrade from two-factor authentication to one-factor authentication. An attacker with access to the offline victim's otp physical token or virtual app like google authenticator is able to bypass the first authentication phase username/password mechanism an...