Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.10 views

CVE-2025-1101

A CWE-204 "Observable Response Discrepancy" in the login page in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to enumerate valid usernames via crafted HTTP requests...

5.3CVSS7AI score0.00709EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 2:15 p.m.4 views

CVE-2025-1101

A CWE-204 "Observable Response Discrepancy" in the login page in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to enumerate valid usernames via crafted HTTP requests...

5.3CVSS0.00709EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 1:26 p.m.6 views

CVE-2025-1101

A CWE-204 "Observable Response Discrepancy" in the login page in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to enumerate valid usernames via crafted HTTP requests...

5.3CVSS5.4AI score0.00709EPSS
Exploits0References1
CVE
CVE
added 2025/02/12 1:26 p.m.63 views

CVE-2025-1101

CVE-2025-1101 affects Q-Free MaxTime <= 2.11.0. A CWE-204 vulnerability in the login page allows an unauthenticated remote attacker to enumerate valid usernames via crafted HTTP requests. The issue is triggered by an observable response discrepancy in the authentication flow, enabling user enu...

5.3CVSS5.4AI score0.00709EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/12 1:26 p.m.14 views

CVE-2025-1101

A CWE-204 "Observable Response Discrepancy" in the login page in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to enumerate valid usernames via crafted HTTP requests...

5.3CVSS0.00709EPSS
Exploits0References1
Rows per page
Query Builder