Vulnerability Details CVE-2025-56224
A lack of rate limiting in the One-Time Password (OTP) verification endpoint of SigningHub v8.6.8 allows attackers to bypass verification via a bruteforce attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.2%
CVSS Severity
CVSS v3 Score 8.1
Products affected by CVE-2025-56224
-
cpe:2.3:a:ascertia:signinghub:8.6.0
-
cpe:2.3:a:ascertia:signinghub:8.6.1
-
cpe:2.3:a:ascertia:signinghub:8.6.2
-
cpe:2.3:a:ascertia:signinghub:8.6.3
-
cpe:2.3:a:ascertia:signinghub:8.6.4
-
cpe:2.3:a:ascertia:signinghub:8.6.5
-
cpe:2.3:a:ascertia:signinghub:8.6.6
-
cpe:2.3:a:ascertia:signinghub:8.6.7