CVE-2022-45168
- Reference to the description:
- Description:
- An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /login/backup_code endpoint and the /api/v1/vdeskintegration/createbackupcodes endpoint, because the application allows a user to generate or regenerate the backup codes before checking the TOTP.
- Last updated date:
- 07/26/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/26/2024
- Reference url to background