An issue was discovered in NiceHash Miner before 2.0.3.0. A missing rate limit while adding a wallet via Email address allows remote attackers to submit a large number of email addresses to identify valid ones. By exploiting this vulnerability with CVE-2019-6122 (Username Enumeration) an adversary can enumerate a large number of valid users' Email addresses.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-11-06T17:12:05
Updated: 2024-08-04T20:16:24.261Z
Reserved: 2019-01-10T00:00:00
Link: CVE-2019-6120
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-11-06T18:15:10.320
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-6120
Redhat
No data.