Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tibbo AggreGate Network Manager < 6.40.05 Login Functionality User Enumeration
Vulnerability Description
Tibbo AggreGate Network Manager < 6.40.05 contains an observable response discrepancy in its login functionality. Authentication failure messages differ based on whether a supplied username exists or not, allowing an unauthenticated remote attacker to infer valid account identifiers. This can facilitate user enumeration and increase the likelihood of targeted brute-force or credential-stuffing attacks.
CVSS Information
N/A
Vulnerability Type
响应差异性信息暴露
Vulnerability Title
Tibbo AggreGate Network Manager 安全漏洞
Vulnerability Description
Tibbo AggreGate Network Manager是Tibbo公司的一个网络监控和 IT 管理平台。 Tibbo AggreGate Network Manager 6.40.05之前版本存在安全漏洞,该漏洞源于登录功能中存在可观察的响应差异,可能导致用户枚举和暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A