CNNVD-202507-3091 Information

CNNVD ID

CNNVD-202507-3091

Related CVE

CVE-2025-45731

• CNNVD Published: 2025-07-24

Description (Chinese)

2FAuth是Bubka个人开发者的一个用于管理双因素身份验证 (2FA) 帐户并生成其安全代码的 Web 应用程序。 2FAuth v5.5.0版本存在安全漏洞，该漏洞源于组删除竞争条件可能导致数据不一致和孤儿账户。

Description (English)

2FAuth is a Web application of Bubka’s personal developer to manage the two-factor authentication (2FA) account and generate its security code. 2FAuth v5.5.0 contains a security loophole, which stems from the fact that the group’s removal of competitive conditions may result in data inconsistencies and orphan accounts.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-07-24

Last Modified

2026-02-24

References

https://github.com/Bubka/2FAuth/security/advisories/GHSA-ph6w-q992-7qrx https://access.redhat.com/security/cve/cve-2025-45731

Patch

https://github.com/Bubka/2FAuth/releases