CVE-2025-54321

Sažetak

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests.

Reference

https://github.com/saykino/CVE-2025-54321
https://www.ascertia.com/company/vulnerability-disclosure-policy/

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

18-11-2025 - 19:15

Objavljeno

18-11-2025 - 19:15