Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-17 | CVE-2024-8429 | Improper Restriction of Excessive Authentication Attempts vulnerability in Digital Operation Services WiFiBurada allows Use of Known Domain Credentials.This issue affects WiFiBurada: before 1.0.5. | 4.3 |
| 2024-12-13 | CVE-2024-38488 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell Recoverpoint for Virtual Machines 6.0 Dell RecoverPoint for Virtual Machines 6.0.x contains a vulnerability. | 9.8 |
| 2024-11-26 | CVE-2024-49597 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite, versions WMS 4.4 and prior, contain an Improper Restriction of Excessive Authentication Attempts vulnerability. | 7.2 |
| 2024-11-04 | CVE-2024-51558 | Improper Restriction of Excessive Authentication Attempts vulnerability in 63Moons Aero and Wave 2.0 This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed authentication attempts on its API based login. | 9.8 |
| 2024-10-09 | CVE-2024-7292 | Improper Restriction of Excessive Authentication Attempts vulnerability in Progress Telerik Report Server In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a credential stuffing attack is possible through improper restriction of excessive login attempts. | 8.8 |
| 2024-10-04 | CVE-2024-47656 | Improper Restriction of Excessive Authentication Attempts vulnerability in Shilpisoft Client Dashboard This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect login attempts on its API based login. | 9.8 |
| 2024-09-19 | CVE-2024-47088 | Improper Restriction of Excessive Authentication Attempts vulnerability in Apexsoftcell LD DP Back Office and LD GEO This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive failed authentication attempts on its API based login. | 9.8 |
| 2024-09-11 | CVE-2024-45790 | Improper Restriction of Excessive Authentication Attempts vulnerability in Reedos Aim-Star 2.0.1 This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for excessive failed authentication attempts on its API based login. | 9.8 |
| 2024-09-11 | CVE-2024-45327 | Improper Restriction of Excessive Authentication Attempts vulnerability in Fortinet Fortisoar An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0 through 7.3.2, 7.2.0 through 7.2.2, 7.0.0 through 7.0.3 change password endpoint may allow an authenticated attacker to perform a brute force attack on users and administrators password via crafted HTTP requests. | 7.5 |
| 2024-09-06 | CVE-2024-32771 | Improper Restriction of Excessive Authentication Attempts vulnerability in Qnap QTS and Quts Hero An improper restriction of excessive authentication attempts vulnerability has been reported to affect several QNAP operating system versions. | 2.4 |