CWE-307

Improper Restriction of Excessive Authentication Attempts

Parent: CWE-1390 - Weak Authentication

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.

561 vulnerabilities with CWE-307
CVE-2025-10658 MEDIUM
SupportCandy - Auth Bypass
CVSS 6.5
CVE-2025-54860 HIGH
Cognex In-Sight Explorer & Camera Firmware - DoS
CVSS 7.7
CVE-2025-36758 MEDIUM
SolaX Cloud - Auth Bypass
CVE-2025-57815 MEDIUM
Ethyca Fides < 2.69.1 - Brute Force
CVSS 6.5
CVE-2025-2417 HIGH
Akinsoft e-Mutabakat <2.02.06 - Auth Bypass
CVSS 8.6
CVE-2025-2411 HIGH
Akinsoft TaskPano <1.06.06 - Auth Bypass
CVSS 8.6
CVE-2025-2416 HIGH
Akinsoft LimonDesk <1.02.17 - Auth Bypass
CVSS 8.6
CVE-2025-2415 HIGH
Akinsoft MyRezzta <2.05.01 - Auth Bypass
CVSS 8.6
CVE-2025-1740 CRITICAL
Akinsoft MyRezzta <2.05.01 - Auth Bypass
CVSS 9.8
CVE-2025-2413 HIGH
Akinsoft ProKuafor <1.02.08 - Auth Bypass
CVSS 8.6
CVE-2025-2414 HIGH
Akinsoft OctoCloud <1.11.01 - Auth Bypass
CVSS 8.6
CVE-2025-2412 HIGH
Akinsoft QR Menu <1.05.12 - Auth Bypass
CVSS 8.6
CVE-2025-9004 LOW
mtons mblog <3.5.0 - Auth Bypass
CVSS 3.7
CVE-2025-8927 LOW
mtons mblog <3.5.0 - Auth Bypass
CVSS 3.7
CVE-2025-52392 MEDIUM
Soosyze - Brute Force
CVSS 5.4
CVE-2025-55003 MEDIUM
OpenBao <2.3.1 - Auth Bypass
CVSS 5.7
CVE-2025-54998 MEDIUM
Openbao < 2.3.2 - Brute Force
CVSS 5.3
CVE-2025-8742 LOW
macrozheng mall 1.0.3 - Auth Bypass
CVSS 3.7
CVE-2025-46414 HIGH
Product - Info Disclosure
CVSS 8.1
CVE-2025-53544 HIGH
Trilium Notes <0.97.0 - Auth Bypass
CVSS 7.5
CVE-2025-6015 MEDIUM
Vault <1.20.1 - Auth Bypass
CVSS 5.7
CVE-2025-6004 MEDIUM
Vault - Auth Bypass
CVSS 5.3
CVE-2025-54833 MEDIUM
OPEXUS FOIAXpress PAL <11.1.0 - Auth Bypass
CVSS 5.3
CVE-2025-28172 MEDIUM
Grandstream Ucm6510 Firmware < 1.0.20.52 - Brute Force
CVSS 6.5
CVE-2025-7393 CRITICAL
Mqanneh Mail Login < 3.2.0 - Brute Force
CVSS 9.8
Details
Vulnerabilities 561
Links
MITRE CWE Entry Search this CWE With Exploits