Name of the Vulnerable Software and Affected Versions «Безопасный город» (affected versions not specified)

Description The issue is related to weaknesses in the authorization mechanisms of the electronic interaction module for services and officials of the «Безопасный город» hardware-software platform. An attacker can exploit this issue remotely to determine all existing usernames by using a brute-force method in the username field with specially crafted POST requests.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.