2 matches found
CVE-2024-23565
CVE-2024-23565 affects HCL Aftermarket EPC. The vulnerability arises from a lack of proper mail-rate limiting in the Forget Password workflow, allowing email flooding by a human attacker or automated process (virus/bot). Consequences cited include potential denial of service and logic/other impac...
CVE-2026-50225 Account Creation Exhaustion
The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database...