2 matches found
CVE-2023-22958
The Syracom Secure Login plugin before 3.1.1.0 for Jira may allow spoofing of 2FA PIN validation via the plugins/servlet/twofactor/public/pinvalidation target parameter...
CVE-2023-22958
CVE-2023-22958 concerns the Syracom Secure Login plugin for Jira, prior to version 3.1.1.0. The issue allows spoofing of 2FA PIN validation via the plugins/servlet/twofactor/public/pinvalidation target parameter, potentially enabling unauthorized access by bypassing two-factor authentication. Doc...