3 matches found
CVE-2022-25838
Laravel Fortify before 1.11.1 allows reuse within a short time window, thus calling into question the "OT" part of the "TOTP" concept...
CVE-2022-25838
Affected Software : Laravel Fortify prior to 1.11.1. Vulnerability : Reuse of a TOTP code within a short time window enables a replay attack, allowing potential unauthorized access to a victim’s account. Root cause : insufficient protection against rapid reuse of one-time codes. Impact : authenti...
Multi-Factor Authentication issue in Laravel Fortify
Laravel Fortify before 1.11.1 allows reuse within a short time window, thus calling into question the "OT" part of the "TOTP" concept...