Brute Force Vulnerability in SigningHub Product by Ascertia
CVE-2025-56224

Currently unrated

Key Information:

Vendor

Ascertia

Status
SigningHub
Vendor
CVE Published:
20 October 2025

What is CVE-2025-56224?

The One-Time Password (OTP) verification endpoint in SigningHub v8.6.8 is vulnerable to brute force attacks due to insufficient rate limiting. This weakness allows attackers to bypass the OTP verification process, potentially compromising accounts and sensitive information. Implementing proper rate limiting is crucial to secure this endpoint against unauthorized access and protect user authentication.

References

http://ascertia.com
http://signinghub.com
https://github.com/saykino/CVE-2025-56224

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-56224 : Brute Force Vulnerability in SigningHub Product by Ascertia