Fedora Account System
Red Hat Associate
Red Hat Customer
Certain login endpoints were improperly validated for MFA enforcement, allowing users with valid username and password combinations to log in without completing second-factor authentication. This exposes affected accounts to unauthorized access. Versions affected: 5.0 to 5.0.2, 4.5 to 4.5.6 and 4.4 to 4.4.10 Versions fixed: 5.0.3, 4.5.7 and 4.4.11