Novell AMIDM v6.1.3 Captcha Replay Attack (CVE-2025-6533)

Key Information Vulnerability Overview CVE ID: CVE-2025-6533 Vulnerability Type: Captcha Replay Attack Affected Component: novell-amidm/src/main/java/com/novell/am/system/controller/LoginController.java:80 Affected Version: v6.1.3 CWE ID: CWE-307 (Improper Restriction of Excessive Authentication Attempts) Vulnerability Details 1. Affected Product Information - Product Name: novell-amidm - Repository URL: https://github.com/2020XG3D/novell-amidm - Affected Component: novell-amidm/src/main/java/com/novell/am/system/controller/LoginController.java:80 - Affected Version: v6.1.3 - Vulnerability Type: Improper Restriction of Excessive Authentication Attempts - CWE ID: CWE-307 2. Code Snippet POC (Proof of Concept) Provides detailed attack steps and code examples demonstrating how to exploit this vulnerability. Additional Information Release Date: April 1, 2023 Author: daXXX License: CC BY-NC-SA 4.0

Goal Reached Thanks to every supporter — we hit 100%!

Novell AMIDM v6.1.3 Captcha Replay Attack (CVE-2025-6533)