The CTS Web transaction system related to authentication and session management is implemented incorrectly, which allows remote unauthenticated attackers can send a large number of valid usernames, and force those logged-in account to log out, causing the user to be unable to access the services
References
Link | Resource |
---|---|
https://www.chtsecurity.com/news/40e165e2-e539-49bc-bcf1-e3b27c29e344 | Third Party Advisory |
https://www.twcert.org.tw/tw/cp-132-4757-893eb-1.html | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: twcert
Published: 2021-05-28T00:00:00
Updated: 2021-07-21T10:25:27
Reserved: 2021-05-10T00:00:00
Link: CVE-2021-32541
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-28T08:15:07.057
Modified: 2022-06-03T19:44:58.400
Link: CVE-2021-32541
JSON object: View
Redhat Information
No data.
CWE