Go package IceWhaleTech/CasaOS-UserService provides user management functionalities to CasaOS. The Casa OS Login page has disclosed the username enumeration vulnerability in the login page which was patched in version 0.4.7. This issue in CVE-2024-28232 has been patched in version 0.4.8 but that version has not yet been uploaded to Go's package manager.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-04-01T16:42:05.726Z
Updated: 2024-06-11T15:47:27.284Z
Reserved: 2024-03-07T14:33:30.034Z
Link: CVE-2024-28232
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-04-01T17:15:45.543
Modified: 2024-04-02T12:50:42.233
Link: CVE-2024-28232
JSON object: View
Redhat Information
No data.
CWE