H4Nm

**Name of the Vulnerable Software and Affected Versions** Cosmos-Server versions prior to 0.17.7 **Description** The Cosmos-Server software has a user enumeration issue due to the error code returned during login, allowing an attacker to determine if a user exists in the database by monitoring the error code. **Recommendations** For Cosmos-Server versions prior to 0.17.7, update to version 0.17.7 to resolve the issue. As a temporary workaround, consider restricting access to the login functionality until the update is applied.