Vulnerabilities > CVE-2022-2525 - Improper Restriction of Excessive Authentication Attempts vulnerability in Janeczku Calibre-Web

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
janeczku
CWE-307
critical

Summary

Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web prior to 0.6.20.