CWE-307

Improper Restriction of Excessive Authentication Attempts

Parent: CWE-1390 - Weak Authentication

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame.

561 vulnerabilities with CWE-307
CVE-2024-5716 CRITICAL
Logsign Unified Secops Platform < 6.4.8 - Brute Force
CVSS 9.8
CVE-2024-0787 MEDIUM
phpIPAM <1.5.1 - Auth Bypass
CVSS 5.9
CVE-2024-9832 CRITICAL
Clinician Password - Info Disclosure
CVSS 9.3
CVE-2024-51720 MEDIUM
SecuSUITE <5.0.420 - Privilege Escalation
CVSS 4.8
CVE-2024-11126 LOW
Digistar AG-30 Plus 2.6b - Auth Bypass
CVSS 3.1
CVE-2024-47592 MEDIUM
SAP NetWeaver AS Java - Info Disclosure
CVSS 5.3
CVE-2024-51558 CRITICAL
Wave 2.0 - DoS
CVSS 9.8
CVE-2024-48143 CRITICAL
Digitory Multi Channel Integrated POS v1.0 - Info Disclosure
CVSS 9.1
CVE-2024-7292 HIGH
Progress Telerik Report Server < 10.2.24.806 - Brute Force
CVSS 7.5
CVE-2024-47656 CRITICAL
Shilpi Client Dashboard - Auth Bypass
CVSS 9.8
CVE-2024-41276 CRITICAL
Kaiten <57.131.12 - Auth Bypass
CVSS 9.8
CVE-2024-47088 CRITICAL
Apex Softcell LD Geo - Auth Bypass
CVSS 9.8
CVE-2024-45523 CRITICAL
Bravura Security Fabric <12.3.5.32784-12.7.1.38241 - DoS
CVSS 9.1
CVE-2024-5682 MEDIUM
Yordam Library Automation System <20.1 - Auth Bypass
CVSS 6.5
CVE-2024-45790 CRITICAL
Reedos Aim-star - Brute Force
CVSS 9.8
CVE-2024-45327 HIGH
FortiSOAR <7.4.3-7.0.3 - Privilege Escalation
CVSS 7.5
CVE-2024-32771 LOW
Qnap Qts - Brute Force
CVSS 2.6
CVE-2024-45589 MEDIUM
Identityautomation Rapididentity < 2023.0.2 - Brute Force
CVSS 5.9
CVE-2024-8462 LOW
Windmill <1.380.0 - Auth Bypass
CVSS 3.7
CVE-2024-43042 CRITICAL
Pluck CMS 4.7.18 - DoS
CVSS 9.8
CVE-2024-42466 CRITICAL
upKeeper Manager <5.1.9 - Auth Bypass
CVSS 9.8
CVE-2024-42465 CRITICAL
upKeeper Manager <5.1.9 - Auth Bypass
CVSS 9.8
CVE-2024-39398 HIGH
Adobe Commerce < 2.4.3 - Brute Force
CVSS 7.4
CVE-2024-41904 HIGH
Siemens Sinec Traffic Analyzer < 2.0 - Brute Force
CVSS 7.5
CVE-2024-41682 MEDIUM
Siemens Location Intelligence < 4.4 - Brute Force
CVSS 5.3
Details
Vulnerabilities 561
Links
MITRE CWE Entry Search this CWE With Exploits