CVE-2026-55370
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.4 / 10
Vector String
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
Vulnerability Description
Logto is the modern, open-source auth infrastructure for SaaS and AI apps. Prior to 1.41.0, Logto's existing TOTP verification accepted a successfully used TOTP code again while the code remained inside the RFC 6238 acceptance window because the verifier used otplib's stateless check with window = 1 and did not persist or compare the accepted TOTP time-step counter. An attacker who has the victim's first factor and captures a live TOTP value can replay that value to satisfy MFA during the same acceptance window. This issue is fixed in version 1.41.0.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-294
Source
NVD
Vendor
logto-io
Product
logto
Discussion (0)
Add Comment
No comments yet. Be the first!