Unauthenticated Brute Force Vulnerability in UVDesk Community Skeleton v1.1.1

Unauthenticated Brute Force Vulnerability in UVDesk Community Skeleton v1.1.1

CVE-2023-37635 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

UVDesk Community Skeleton v1.1.1 allows unauthenticated attackers to perform brute force attacks on the login page to gain access to the application.

Learn more about our Web Application Penetration Testing UK.