Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-28 | CVE-2022-36781 | Improper Restriction of Excessive Authentication Attempts vulnerability in Connectwise Screenconnect ConnectWise ScreenConnect versions 22.6 and below contained a flaw allowing potential brute force attacks on custom access tokens due to inadequate rate-limiting controls in the default configuration. | 5.3 |
| 2022-08-02 | CVE-2022-35925 | Improper Restriction of Excessive Authentication Attempts vulnerability in Joinbookwyrm Bookwyrm BookWyrm is a social network for tracking reading. | 9.8 |
| 2022-07-28 | CVE-2021-22640 | Improper Restriction of Excessive Authentication Attempts vulnerability in Ovarro products An attacker can decrypt the Ovarro TBox login password by communication capture and brute force attacks. | 9.8 |
| 2022-07-05 | CVE-2022-2321 | Improper Restriction of Excessive Authentication Attempts vulnerability in Heroiclabs Nakama Improper Restriction of Excessive Authentication Attempts in GitHub repository heroiclabs/nakama prior to 3.13.0. | 5.0 |
| 2022-06-30 | CVE-2022-22487 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Server An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. | 9.8 |
| 2022-06-30 | CVE-2022-22496 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Server While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being established, it may be configured to use SESSIONSECURITY=TRANSITIONAL. | 3.3 |
| 2022-06-17 | CVE-2022-22485 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Spectrum Protect Operations Center In some cases, an unsuccessful attempt to log into IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14.000 does not cause the administrator's invalid sign-on count to be incremented on the IBM Spectrum Protect Server. | 9.8 |
| 2022-06-14 | CVE-2022-31273 | Improper Restriction of Excessive Authentication Attempts vulnerability in 17Ido Topidp3000 Topsec Operating System Tos3.3.005.665B.15Smpidp An issue in TopIDP3000 Topsec Operating System tos_3.3.005.665b.15_smpidp allows attackers to perform a brute-force attack via a crafted session_id cookie. | 5.0 |
| 2022-06-08 | CVE-2022-28386 | Improper Restriction of Excessive Authentication Attempts vulnerability in Verbatim products An issue was discovered in certain Verbatim drives through 2022-03-31. | 4.6 |
| 2022-06-08 | CVE-2022-28384 | Improper Restriction of Excessive Authentication Attempts vulnerability in Verbatim products An issue was discovered in certain Verbatim drives through 2022-03-31. | 5.5 |