Source |
CVE Liste |
Identifiant |
8310567 |
Date de publication |
2023-02-15 15:15:11 (vue: 2023-02-15 18:06:57) |
Titre |
CVE-2023-25156 |
Texte |
Kiwi TCMS, an open source test management system, does not impose rate limits in versions prior to 12.0. This makes it easier to attempt brute-force attacks against the login page. Users should upgrade to v12.0 or later to receive a patch. As a workaround, users may install and configure a rate-limiting proxy in front of Kiwi TCMS. |
Envoyé |
Oui |
Condensat |
2023 25156 against attacks attempt brute configure cve does easier force front impose install kiwi later limiting limits login makes management may not open page patch prior proxy rate receive should source system tcms test upgrade users v12 versions workaround |
Tags |
|
Stories |
|
Notes |
|
Move |
|