Lucene search
Veracode Vulnerability DatabaseVERACODE:44660HistoryDec 13, 2023 - 12:03 p.m.
Brute Force Of Valid Usernames
2023-12-1312:03:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
umbraco
brute force
usernames
security
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
umbraco.cms is vulnerable to Brute Force Of Valid Usernames. This can lead to an attacker accessing valid usernames in the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| umbraco.cms | eq | 10.8.0 | |
| umbraco.cms | le | 12.3.3 | |
| umbraco.cms | eq | 10.8.0 | |
| umbraco.cms | le | 12.3.3 |
Related
cve
cve
CVE-2023-49278
2023-12-12 20:15:08
prion
prion
Information disclosure
2023-12-12 20:15:00
github
github
Brute force exploit can be used to collect valid usernames
2023-12-13 13:27:06
nvd
nvd
CVE-2023-49278
2023-12-12 20:15:08
osv
osv
Brute force exploit can be used to collect valid usernames
2023-12-13 13:27:06
CVE-2023-49278
2023-12-12 20:15:08
cvelist
cvelist
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
Related for VERACODE:44660