CVE-2025-42600 – Meon KYC Brute Force OTP Vulnerability

April 23, 2025

CVE ID : CVE-2025-42600

Published : April 23, 2025, 11:15 a.m. | 3 hours, 43 minutes ago

Description : This vulnerability exists in Meon KYC solutions due to missing restrictions on the number of incorrect One-Time Password (OTP) attempts through certain API endpoints of login process. A remote attacker could exploit this vulnerability by performing a brute force attack on OTP, which could lead to gain unauthorized access to other user accounts.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-42601 – Meon KYC Captcha Bypass Vulnerability

Next Article CVE-2025-1054 – UiCore Elements – WordPress Stored Cross-Site Scripting

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

AI is currently in its teenage years, battling raging hormones

The 2025 Wholesome Direct was chock-full of cozy casual games and aesthetic vibes

All known AMD Ryzen Z2 Series gaming handheld chips and how they are rumored to compare

“The original Mass Effect trilogy was absolutely an inspiration.” The RPG experts behind WH40K: Rogue Trader are hitting it big with ‘The Expanse: Osiris Reborn’

If you’ve started to notice Xbox console games showing up on the Xbox PC store, you’re not alone — what’s going on?

Master Image Processing in Node.js Using Sharp for Fast Web Apps

Master Image Processing in Node.js Using Sharp for Fast Web Apps

mkocansey/bladewind

Handling PostgreSQL Migrations in Node.js

The 2025 Wholesome Direct was chock-full of cozy casual games and aesthetic vibes

The 2025 Wholesome Direct was chock-full of cozy casual games and aesthetic vibes

All known AMD Ryzen Z2 Series gaming handheld chips and how they are rumored to compare

“The original Mass Effect trilogy was absolutely an inspiration.” The RPG experts behind WH40K: Rogue Trader are hitting it big with ‘The Expanse: Osiris Reborn’

CVE-2025-42600 – Meon KYC Brute Force OTP Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721

CVE-2025-5356 – FreeFloat FTP Server BYE Command Handler Buffer Overflow Vulnerability

New Stego Campaign Leverages MS Office Vulnerability to Deliver AsyncRAT

CVE-2025-4082 – Mozilla Firefox WebGL Out-of-Bounds Read RCE

CVE-2025-43859: Request Smuggling Vulnerability in Python’s h11 HTTP Library

CVE-2025-2776 – SysAid XXE Vulnerability

CVE-2025-46237 – Yannick Lefebvre Link Library Cross-site Scripting

CVE-2024-51103 – PHPGURUKUL Student Management System SQL Injection Vulnerability

Design Critique: Framework

CVE-2025-42600 – Meon KYC Brute Force OTP Vulnerability

Related Posts