Vulnerabilities > CVE-2022-22553 - Improper Restriction of Excessive Authentication Attempts vulnerability in Dell EMC Appsync
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability that can be exploited from UI and CLI. An adjacent unauthenticated attacker could potentially exploit this vulnerability, leading to password brute-forcing. Account takeover is possible if weak passwords are used by users.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |