Home

Description

A lack of rate limiting in the One-Time Password (OTP) verification endpoint of SigningHub v8.6.8 allows attackers to bypass verification via a bruteforce attack.

PUBLISHED Reserved 2025-08-16 | Published 2025-10-20 | Updated 2025-10-21 | Assigner mitre

References

ascertia.com

signinghub.com

github.com/saykino/CVE-2025-56224

cve.org (CVE-2025-56224)

nvd.nist.gov (CVE-2025-56224)

Download JSON