Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Brute Force Attack Vulnerability in Meon KYC solutions
Vulnerability Description
This vulnerability exists in Meon KYC solutions due to missing restrictions on the number of incorrect One-Time Password (OTP) attempts through certain API endpoints of login process. A remote attacker could exploit this vulnerability by performing a brute force attack on OTP, which could lead to gain unauthorized access to other user accounts.
CVSS Information
N/A
Vulnerability Type
过多认证尝试的限制不恰当
Vulnerability Title
Meon KYC 安全漏洞
Vulnerability Description
Meon KYC是印度Meon公司的一个解决方案。 Meon KYC存在安全漏洞,该漏洞源于登录过程中某些API端点缺少对一次性密码错误尝试次数的限制,可能导致暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A