Account Takeover Vulnerability in VeridiumID WebAuthn API
CVE-2023-44039
Currently unrated
What is CVE-2023-44039?
The WebAuthn API in VeridiumID versions before 3.5.0 is susceptible to an internal attack that allows an unauthenticated attacker, who has passed the necessary enrollment verifications, to register their own FIDO authenticator. This capability poses a significant risk as it can lead to unauthorized access, enabling the attacker to take over the victim's account. Organizations using this authentication platform should prioritize updates to mitigate potential exploitation.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.