CRITICAL🇵🇱 Wersja polska

CVE-2024-5716

CVSS 9.8v3.1pub. 2024-11-22upd. 2025-07-10

Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password reset mechanism. The issue results from the lack of restriction of excessive authentication attempts. An attacker can leverage this vulnerability to reset a user's password and bypass authentication on the system. Was ZDI-CAN-24164.

🤖 AI Analysis
How it works

The flaw results from the lack of restrictions on the number of authentication attempts in the password reset mechanism (CWE-307 — insufficient protection against excessive number of attempts). An attacker can repeatedly send password reset requests without any blocks or limits. This makes it possible to effectively reset any user's password and then log in to their account. No prior authentication or user interaction is required to exploit the vulnerability.

Impact

An attacker can take control of any user account on the platform, gaining full access (confidentiality, integrity, and availability of the system) to the Logsign Unified SecOps Platform environment. In the case of administrative accounts, this results in complete system compromise.

Mitigation & patch

Update Logsign Unified SecOps Platform to version 6.4.8 or later in accordance with the information in the vendor's official Release Notes available at the address indicated in the references. Until the patch is applied, it is recommended to restrict network access to the platform interface only to trusted hosts.

Who is affected

Logsign Unified SecOps Platform — versions indicated in vendor references (patch available from version 6.4.8 in accordance with vendor Release Notes from 03.06.2024)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Logsign Unified Secops Platform

    APP
    Logsign
    6.4.6 – 6.4.8 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2025-1044CRITICAL9.8PL ✓ten sam produkt

Podatność Auth Bypass w Logsign Unified SecOps Platform

CVE-2024-5719HIGH8.8ten sam produkt

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allo...

CVE-2024-5720HIGH8.8ten sam produkt

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This vulnerability allo...

CVE-2024-5721HIGH8.1ten sam produkt

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. This vulnerability...

CVE-2024-5718HIGH8.1ten sam produkt

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability. This vulnerability...