CVE-2019-18985
on github
Published
Severity
CVSS v3:
9.8 CRITICAL
CVSS v2:
5 MEDIUM
Description
Pimcore before 6.2.2 lacks brute force protection for the 2FA token.
References
Configurations
| CPE23 | Version Start | Version End | Exact Version |
|---|---|---|---|
| cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:* | n/a | 6.2.2 | * |