CVE-2024-13239

Critical CVSS: 9.8

Weak Authentication vulnerability in Drupal Two-factor Authentication (TFA) allows Authentication Abuse.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.5.0.

Vendor

Two-factor Authentication Project

Product

Two-factor Authentication

CWE

CWE-1390

Yayın Tarihi

2025-01-09 19:15:17

Güncelleme

2025-06-04 16:38:42

Source Identifier

mlhess@drupal.org

KEV Date Added

Kategoriler

CWE-1390 Two-factor Authentication CRITICAL Two-factor Authentication Project 2025

Referanslar

https://www.drupal.org/sa-contrib-2024-003

Benzer Kayıtlar

Medium

CVE-2025-7030

Privilege Defined With Unsafe Actions vulnerability in Drupal Two-factor Authentication (TFA) allows Exploiting Incorrec…

High

CVE-2025-31694

Incorrect Authorization vulnerability in Drupal Two-factor Authentication (TFA) allows Forceful Browsing.This issue affe…

Critical

CVE-2024-13279

Session Fixation vulnerability in Drupal Two-factor Authentication (TFA) allows Session Fixation.This issue affects Two-…