CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-54321

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the reset password function, leading to an email bombing vulnerability. An authenticated attacker can exploit this by automating reset password requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.3%

CVSS Severity

CVSS v3 Score 9.8

References

Products affected by CVE-2025-54321

Ascertia » Signinghub » Version: 8.6.0

cpe:2.3:a:ascertia:signinghub:8.6.0
Ascertia » Signinghub » Version: 8.6.1

cpe:2.3:a:ascertia:signinghub:8.6.1
Ascertia » Signinghub » Version: 8.6.2

cpe:2.3:a:ascertia:signinghub:8.6.2
Ascertia » Signinghub » Version: 8.6.3

cpe:2.3:a:ascertia:signinghub:8.6.3
Ascertia » Signinghub » Version: 8.6.4

cpe:2.3:a:ascertia:signinghub:8.6.4
Ascertia » Signinghub » Version: 8.6.5

cpe:2.3:a:ascertia:signinghub:8.6.5
Ascertia » Signinghub » Version: 8.6.6

cpe:2.3:a:ascertia:signinghub:8.6.6
Ascertia » Signinghub » Version: 8.6.7

cpe:2.3:a:ascertia:signinghub:8.6.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-54321

Products

Pricing

Contact Us