CWE-307

Improper Restriction of Excessive Authentication Attempts

Parent: CWE-1390 - Weak Authentication

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.

561 vulnerabilities with CWE-307
CVE-2026-2110 LOW
Tasin1025 SwiftBuy <0f5011372e8d1d7edfd642d57d721c9fadc54ec7 - Auth...
CVSS 3.7
CVE-2026-1685 LOW
D-Link DIR-823X 250416 - Auth Bypass
CVSS 3.7
CVE-2026-24436 CRITICAL
Shenzhen Tenda W30E V2 - Auth Bypass
CVSS 9.8
CVE-2026-1409 LOW
Beetel 777VR1 <01.00.09/01.00.09_55 - Auth Bypass
CVSS 2.0
CVE-2026-22278 HIGH
Dell Powerscale Onefs < 9.13.0.0 - Brute Force
CVSS 8.1
CVE-2026-22603 MEDIUM
Openproject < 16.6.2 - Brute Force
CVSS 6.5
CVE-2025-14362 HIGH
GoAnywhere MFT SFTP Service Login Vulnerable to Brute Force Attack Under Certain Circumstances
CVSS 7.3
CVE-2025-46606 MEDIUM
Dell PowerProtect Data Domain 8.4-8.5 - Auth Bypass
CVSS 6.2
CVE-2025-31991 MEDIUM
HCL DevOps Velocity is susceptible to brute-force attacks
CVSS 6.8
CVE-2025-69246 CRITICAL
Lack of bruteforce protection in Raytha CMS
CVSS 9.8
CVE-2025-66413 HIGH
Git for Windows <2.53.0(2) - Info Disclosure
CVSS 7.4
CVE-2025-69615 CRITICAL
Deutsche Telekom AG Portal - Auth Bypass
CVSS 9.1
CVE-2025-36363 MEDIUM
IBM DevOps Plan 3.0.0-3.0.5 - Auth Bypass
CVSS 5.9
CVE-2025-7630 MEDIUM
Wispotter <2025.10.08.1 - Auth Bypass
CVSS 5.3
CVE-2025-67853 HIGH
Moodle < 4.1.22 - Brute Force
CVSS 7.5
CVE-2025-4319 CRITICAL
Birebirsoft Sufirmam <23012026 - Auth Bypass
CVSS 9.4
CVE-2025-53968 HIGH
Evmapa - Brute Force
CVSS 7.5
CVE-2025-67091 MEDIUM
Gl-inet Ax1800 Firmware - Brute Force
CVSS 6.5
CVE-2025-67090 MEDIUM
Gl-inet Ax1800 Firmware - Brute Force
CVSS 5.1
CVE-2025-1928 CRITICAL
Restajet Online Food Delivery System <1920191225 - Info Disclosure
CVSS 9.1
CVE-2025-65427 MEDIUM
Dbitnet Dbit N300 T1 Pro Firmware - Brute Force
CVSS 6.5
CVE-2025-66482 MEDIUM
Misskey <2025.12.0-alpha.2 - SSRF
CVSS 6.5
CVE-2025-66204 HIGH
WBCE CMS <1.6.5 - Auth Bypass
CVSS 8.1
CVE-2025-42615 HIGH
Vulnerability-lookup < - Info Disclosure
CVE-2025-46603 HIGH
Dell CloudBoost Virtual Appliance <19.13.0.0 - Info Disclosure
CVSS 7.0
Details
Vulnerabilities 561
Links
MITRE CWE Entry Search this CWE With Exploits