VYPR
Unrated severityNVD Advisory· Published Oct 6, 2025· Updated Oct 6, 2025

User Enumeration by excessive error output

CVE-2025-58586

Description

For failed login attempts, the application returns different error messages depending on whether the login failed due to an incorrect password or a non-existing username. This allows an attacker to guess usernames until they find an existing one.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.