CVE-2025-12310

Name of the Vulnerable Software and Affected Versions VirtFusion versions through 6.0.2

Description A security issue exists in VirtFusion that relates to improper restriction of excessive authentication attempts. The issue is located within the Email Change Handler component, specifically affecting unknown code within the /account/ settings file. The attack can be initiated remotely. The exploit for this issue has been publicly disclosed.

Recommendations Versions prior to 6.0.3 should be updated.