| |
Vulnerability CVE-2022-45168
Published: 2024-06-10
| Description: |
An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /login/backup_code endpoint and the /api/v1/vdeskintegration/createbackupcodes endpoint, because the application allows a user to generate or regenerate the backup codes before checking the TOTP. |
References: |
https://www.gruppotim.it/it/footer/red-team.html
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
