CVE-2019-7218

CVE-2019-7218

Citrix ShareFile through 19.1 allows a downgrade from two-factor authentication to one-factor authentication. An attacker with access to the offline victim?s otp physical token or virtual app (like google authenticator) is able to bypass the first authentication phase (username/password mechanism) and log-in using username/otp combination only (phase 2 of 2FA).

Source: CVE-2019-7218

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다