Vulnerabilities > CVE-2023-27152 - Improper Restriction of Excessive Authentication Attempts vulnerability in Opnsense 23.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
DECISO OPNsense 23.1 does not impose rate limits for authentication, allowing attackers to perform a brute-force attack to bypass authentication.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |