VYPR
Unrated severityNVD Advisory· Published Jun 10, 2024· Updated Mar 20, 2025

CVE-2022-45168

CVE-2022-45168

Description

An issue was discovered in LIVEBOX Collaboration vDesk through v018. A Bypass of Two-Factor Authentication can occur under the /login/backup_code endpoint and the /api/v1/vdeskintegration/createbackupcodes endpoint, because the application allows a user to generate or regenerate the backup codes before checking the TOTP.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • LIVEBOX Collaboration/vDeskdescription
  • LIVEBOX/vDeskllm-create
    Range: through v018

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.