CVE-2025-56221
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-17

Last updated on: 2025-10-27

Assigner: MITRE

Description
A lack of rate limiting in the login mechanism of SigningHub v8.6.8 allows attackers to bypass authentication via a brute force attack.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-17
Last Modified
2025-10-27
Generated
2026-06-16
AI Q&A
2025-10-17
EPSS Evaluated
2026-06-15
NVD
CVE-2025-56221
EUVD
EUVD-2025-34910
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ascertia signinghub to 8.6.8 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-307 The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a lack of rate limiting in the login mechanism of SigningHub version 8.6.8. It allows attackers to perform unlimited password guessing attempts (brute force attacks) on the authentication API because there are no restrictions or cooldowns on excessive login attempts. This makes it easier for attackers to bypass authentication and compromise user accounts remotely. [1]

Impact Analysis

This vulnerability can lead to unauthorized access to user accounts by allowing attackers to brute force passwords without limitation. This can result in full compromise of confidentiality, integrity, and availability of the affected system, as attackers can gain control over accounts and potentially sensitive data or system functions. [1]

Detection Guidance

This vulnerability can be detected by monitoring for excessive or repeated authentication attempts to the /authenticate API endpoint of SigningHub v8.6.8. Network or system logs showing a high volume of login attempts from a single source or multiple rapid attempts without lockout may indicate exploitation attempts. Commands to detect such activity could include using tools like 'grep' or 'awk' on server logs to identify repeated failed login attempts, for example: 'grep "/authenticate" /var/log/auth.log | grep "failed" | sort | uniq -c | sort -nr' to count failed authentication attempts. Additionally, network monitoring tools can be used to detect unusual traffic patterns targeting the authentication API. [1]

Mitigation Strategies

Immediate mitigation steps include implementing rate limiting or cooldown periods on the authentication API to restrict the number of login attempts from a single source within a given timeframe. If possible, upgrade SigningHub to a version later than 8.6.8 where this issue is fixed. Additionally, monitoring and blocking IP addresses exhibiting brute-force behavior and enforcing strong password policies can help reduce risk. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-56221. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart