CVE-2022-48366

Published
View on NVD ↗
CVSS v3
3.7
LOW
CVSS v2
N/A
Affected
2
PROJECTS

Description

An issue was discovered in eZ Platform Ibexa Kernel before 1.3.19. It allows determining account existence via a timing attack.

ezsystems/ezpublish-kernel
ezsystems/ezpublish-kernel
Kernel (Repository, MVC layer, REST) for eZ Platform
GitHubGitHub
160
ezsystems/ezplatform-kernel
ezsystems/ezplatform-kernel
Ibexa Kernel (Repository, MVC layer, Symfony integration).
GitHubGitHub
14