ГлавнаяУязвимости → CVE-2025-54321
9.8критическая

CVE-2025-54321

Описание

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests.

Затрагиваемое ПО
Ascertia Signinghub
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/saykino/CVE-2025-54321https://www.ascertia.com/company/vulnerability-disclosure-policy/