CVE-2024-13239

CVE-2024-13239: Two-factor Authentication (TFA) - Moderately critical - Access bypass - SA-CONTRIB-2024-003

Vendor Drupal
Product Two-factor Authentication (TFA)
Weakness CWE-1390
Published January 9, 2025
Last update January 10, 2025

CVSS base score

What the vulnerability does

01Description

Weak Authentication vulnerability in Drupal Two-factor Authentication (TFA) allows Authentication Abuse.This issue affects Two-factor Authentication (TFA): from 0.0.0 before 1.5.0.

Key dates

02Disclosure timeline

January 9, 2025 CVE published
January 10, 2025 Record updated