Primary

Context

Birebirsoft Sufirmam Brute Force and Password Recovery Vulnerability

Vulnerability

A vulnerability allowing brute force attacks and exploitation of the password recovery mechanism has been identified in Birebirsoft Software and Technology Solutions' Sufirmam product, affecting versions through 23012026. This issue arises from improper restriction of excessive authentication attempts and a weak password recovery process for forgotten passwords.

Impact

Exploitation of this vulnerability could lead to unauthorized access through brute force attacks or manipulation of the password recovery feature, allowing attackers to reset passwords and gain access to user accounts.

Remediation

Users of the Sufirmam application are advised to switch to an alternative application, as the vendor has not addressed these vulnerabilities.

Added: Jan 23, 2026, 1:29 PM

Updated: Jan 23, 2026, 1:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

7.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Birebirsoft Sufirmam Brute Force and Password Recovery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating