Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-14 | CVE-2022-22452 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Security Verify Governance 10.0 IBM Security Verify Identity Manager 10.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. | 7.5 |
| 2022-06-30 | CVE-2022-22487 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Server An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. | 9.8 |
| 2022-06-30 | CVE-2022-22496 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Server While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being established, it may be configured to use SESSIONSECURITY=TRANSITIONAL. | 6.5 |
| 2022-06-17 | CVE-2022-22485 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Operations Center In some cases, an unsuccessful attempt to log into IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14.000 does not cause the administrator's invalid sign-on count to be incremented on the IBM Spectrum Protect Server. | 9.8 |
| 2022-06-14 | CVE-2022-31273 | Improper Restriction of Excessive Authentication Attempts vulnerability in 17Ido Topidp3000 Topsec Operating System Tos3.3.005.665B.15Smpidp An issue in TopIDP3000 Topsec Operating System tos_3.3.005.665b.15_smpidp allows attackers to perform a brute-force attack via a crafted session_id cookie. | 9.8 |
| 2022-06-08 | CVE-2022-28386 | Improper Restriction of Excessive Authentication Attempts vulnerability in Verbatim products An issue was discovered in certain Verbatim drives through 2022-03-31. | 4.6 |
| 2022-06-08 | CVE-2022-28384 | Improper Restriction of Excessive Authentication Attempts vulnerability in Verbatim products An issue was discovered in certain Verbatim drives through 2022-03-31. | 5.5 |
| 2022-06-02 | CVE-2022-29084 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. | 9.8 |
| 2022-05-24 | CVE-2013-10004 | Improper Restriction of Excessive Authentication Attempts vulnerability in Telecomsoftware Samwin Agent and Samwin Contact Center A vulnerability classified as critical was found in Telecommunication Software SAMwin Contact Center Suite 5.1. | 9.8 |
| 2022-05-20 | CVE-2022-24044 | Improper Restriction of Excessive Authentication Attempts vulnerability in Siemens products A vulnerability has been identified in Desigo DXR2 (All versions < V01.21.142.5-22), Desigo PXC3 (All versions < V01.21.142.4-18), Desigo PXC4 (All versions < V02.20.142.10-10884), Desigo PXC5 (All versions < V02.20.142.10-10884). | 7.5 |