mfa/FIDO2.py in django-mfa2 before... CVE-2022-42731

- AV AC AU C I A
发布: 2022-10-11
修订: 2024-11-21

mfa/FIDO2.py in django-mfa2 before 2.5.1 and 2.6.x before 2.6.1 allows a replay attack that could be used to register another device for a user. The device registration challenge is not invalidated after usage.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息