CVE-2024-52043

Name of the Vulnerable Software and Affected Versions HumHub versions through 1.16.2

Description The issue affects HumHub, allowing excavation through user enumeration due to an observable response discrepancy. This discrepancy can lead to the generation of error messages containing sensitive information. The estimated number of potentially affected devices is not specified. There is no information provided about real-world incidents where this issue was exploited. The vulnerability is related to the excavation of user information, potentially allowing attackers to enumerate users.

Recommendations For versions through 1.16.2, update to a version that contains a fix for this issue to prevent user enumeration and potential remote exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.