CVE-2024-45404

Name of the Vulnerable Software and Affected Versions: OpenCTI versions prior to 6.2.18

Description: The issue affects the two-factor authentication mechanism in OpenCTI, an open-source cyber threat intelligence platform. Due to the lack of a function to limit the rate of One Time Passwords (OTPs), an attacker with valid credentials or a malicious user can bypass the two-factor authentication and hijack the account. This is because the otpLogin mutation does not implement One Time Password rate limiting.

Recommendations: For versions prior to 6.2.18, as a temporary workaround, consider disabling the otpLogin mutation until a patch is available. Restrict access to the two-factor authentication mechanism to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.