CVE-2024-48942 | Syracom Secure Login Plugin up to 3.1.4.5 on Jira/Confluence/Bitbucket 2FA PIN pinvalidation excessive authentication
A vulnerability classified as problematic has been found in Syracom Secure Login Plugin up to 3.1.4.5 on Jira/Confluence/Bitbucket. This affects an unknown part of the file plugins/servlet/twofactor/public/pinvalidation of the component 2FA PIN Handler. The manipulation leads to improper restriction of excessive authentication attempts.
This vulnerability is uniquely identified as CVE-2024-48942. It is possible to initiate the attack remotely. There is no exploit available.