CVE-2023-47102
5.3MEDIUMUrBackup Server 2.5.31 allows brute-force enumeration of user accounts because a failure message confirms that a username is not valid.
Publicado: 11/7/2023Actualizado: 9/29/2025
Descripción
UrBackup Server 2.5.31 allows brute-force enumeration of user accounts because a failure message confirms that a username is not valid.
Análisis IAImpulsado por IA
Productos Afectados
urbackupurbackup_server
2.5.31
Referencias
- https://nitipoom-jaroonchaipipat.github.io/security-research-portal/2023-47102
- https://quantiano.github.io/cve-2023-47102/ExploitThird Party Advisory
- https://quantiano.github.io/cve-2023-47102/ExploitThird Party Advisory