漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Tibbo AggreGate Network Manager < 6.40.05 Login Functionality User Enumeration
Vulnerability Description
Tibbo AggreGate Network Manager < 6.40.05 contains an observable response discrepancy in its login functionality. Authentication failure messages differ based on whether a supplied username exists or not, allowing an unauthenticated remote attacker to infer valid account identifiers. This can facilitate user enumeration and increase the likelihood of targeted brute-force or credential-stuffing attacks.
CVSS Information
N/A
Vulnerability Type
响应差异性信息暴露
Vulnerability Title
Tibbo AggreGate Network Manager 安全漏洞
Vulnerability Description
Tibbo AggreGate Network Manager是Tibbo公司的一个网络监控和 IT 管理平台。 Tibbo AggreGate Network Manager 6.40.05之前版本存在安全漏洞,该漏洞源于登录功能中存在可观察的响应差异,可能导致用户枚举和暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A