CVE-2022-25838

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
24/02/2022
Last modified:
08/03/2022

Description

Laravel Fortify before 1.11.1 allows reuse within a short time window, thus calling into question the "OT" part of the "TOTP" concept.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:laravel:fortify:*:*:*:*:*:*:*:* 1.11.1 (excluding)