CWE-307

Improper Restriction of Excessive Authentication Attempts

Parent: CWE-1390 - Weak Authentication

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.

561 vulnerabilities with CWE-307
CVE-2025-12995 HIGH
Medtronic CareLink Network <December 4, 2025 - Open Redirect
CVSS 8.1
CVE-2025-64310 CRITICAL
EPSON WebConfig - DoS
CVSS 9.8
CVE-2025-63807 CRITICAL
University-BBS <9e06bab430bfc729f27b4284ba7570db3b11ce84 - Auth Bypass
CVSS 9.8
CVE-2025-59113 HIGH
Windu Cms - Brute Force
CVSS 7.5
CVE-2025-11566 MEDIUM
Unknown - Auth Bypass
CVE-2025-10161 HIGH
Turkguven Software Technologies Inc. Perfektive <12574.2701 - Auth ...
CVSS 7.3
CVE-2025-12896 MEDIUM
Solidigm DC Products - Privilege Escalation
CVSS 4.4
CVE-2025-12547 LOW
LogicalDOC Community Edition <9.2.1 - Info Disclosure
CVSS 3.7
CVE-2025-62257 MEDIUM
Liferay Digital Experience Platform < 7.4 - Brute Force
CVSS 5.3
CVE-2025-10928 MEDIUM
Access Code < 2.0.5 - Brute Force
CVSS 6.3
CVE-2025-64102 CRITICAL
Zitadel < 2.71.18 - Brute Force
CVSS 9.8
CVE-2025-12310 MEDIUM
VirtFusion <6.0.2 - Auth Bypass
CVSS 5.3
CVE-2025-60424 HIGH
Nagios Fusion <2024R2 - Auth Bypass
CVSS 7.6
CVE-2025-26862 NONE
PingFederate - Auth Bypass
CVE-2025-62399 HIGH
Moodle < 4.1.21 - Brute Force
CVSS 7.5
CVE-2025-56224 HIGH
Ascertia Signinghub < 8.6.8 - Brute Force
CVSS 8.1
CVE-2025-56221 CRITICAL
Ascertia Signinghub < 8.6.8 - Brute Force
CVSS 9.8
CVE-2025-9551 MEDIUM
Drupal Protected Pages <1.8.0 - Auth Bypass
CVSS 6.5
CVE-2025-11441 LOW
JhumanJ OpnForm <1.9.3 - Auth Bypass
CVSS 3.7
CVE-2025-58587 MEDIUM
Sick Analytics Products - Improper Authentication
CVSS 6.5
CVE-2025-8679 CRITICAL
Extremenetworks Extremeguest Essentials < 25.5.0 - Brute Force
CVSS 9.8
CVE-2025-8118 MEDIUM
Widzialni Pad Cms < 1.2.1 - Brute Force
CVSS 6.5
CVE-2025-36064 MEDIUM
IBM Sterling Connect < 3.1.0.23 - Brute Force
CVSS 5.9
CVE-2025-35041 HIGH
Airship.ai Acropolis < 10.2.35 - Brute Force
CVSS 7.5
CVE-2025-10761 LOW
Harness 3.3.0 - Auth Bypass
CVSS 3.7
Details
Vulnerabilities 561
Links
MITRE CWE Entry Search this CWE With Exploits