CVE-2024-48942 - Syracom Secure Login for Jira Confluence and Bitbucket Two-Factor Authentication Pin Brute Force Vulnerability

1 month ago 19
ARTICLE AD BOX
CVE ID : CVE-2024-48942
Published : Oct. 10, 2024, 12:15 a.m. | 25 minutes ago
Description : The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows remote attackers to easily brute-force the 2FA PIN via the plugins/servlet/twofactor/public/pinvalidation endpoint. The last 30 and the next 30 tokens are valid.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article