CVE-2022-34772

Summary

Tabit - password enumeration. Description: Tabit - password enumeration. The passwords for the Tabit system is a 4 digit OTP. One can resend OTP and try logging in indefinitely. Once again, this is an example of OWASP: API4 - Rate limiting.

Affected Software

VendorProductVersion RangeStatus
TabitTabit3.27.0 < 3.27.0*affected

Weaknesses

  • password enumeration

ADP Enrichment

CVE Program Container

Additional References

References