2 matches found
CVE-2020-24008
Umanni RH 1.0 has a user enumeration vulnerability. This issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid users...
CVE-2020-24008
CVE-2020-24008 affects Umanni RH 1.0. A user enumeration flaw exists in the password recovery flow: messages differ between valid and invalid usernames, potentially enabling brute‑force attempts against valid users. Connected sources do not provide concrete remediation details or explicit exploit...