Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-05 | CVE-2024-45589 | Improper Restriction of Excessive Authentication Attempts vulnerability in Identityautomation Rapididentity RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive authentication attempts and allows a remote attacker to cause a denial of service via the username parameters. | 5.9 |
| 2024-08-28 | CVE-2021-22530 | Improper Restriction of Excessive Authentication Attempts vulnerability in Microfocus Netiq Advanced Authentication A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. | 9.9 |
| 2024-08-16 | CVE-2024-43042 | Improper Restriction of Excessive Authentication Attempts vulnerability in Pluck-Cms Pluck 4.7.18 Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute force attack. | 9.8 |
| 2024-08-16 | CVE-2024-42465 | Improper Restriction of Excessive Authentication Attempts vulnerability in Upkeeper Manager Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9. | 9.8 |
| 2024-08-16 | CVE-2024-42466 | Improper Restriction of Excessive Authentication Attempts vulnerability in Upkeeper Manager Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9. | 9.8 |
| 2024-08-14 | CVE-2024-39398 | Improper Restriction of Excessive Authentication Attempts vulnerability in Adobe Commerce Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an Improper Restriction of Excessive Authentication Attempts vulnerability that could result in a security feature bypass. | 7.4 |
| 2024-08-13 | CVE-2024-41682 | Improper Restriction of Excessive Authentication Attempts vulnerability in Siemens Location Intelligence A vulnerability has been identified in Location Intelligence family (All versions < V4.4). | 5.3 |
| 2024-08-13 | CVE-2024-41904 | Improper Restriction of Excessive Authentication Attempts vulnerability in Siemens Sinec Traffic Analyzer A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). | 7.5 |
| 2024-08-06 | CVE-2024-39225 | Improper Restriction of Excessive Authentication Attempts vulnerability in Gl-Inet products GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a remote code execution (RCE) vulnerability. | 9.8 |
| 2024-07-12 | CVE-2024-39917 | Improper Restriction of Excessive Authentication Attempts vulnerability in Neutrinolabs Xrdp xrdp is an open source RDP server. | 9.8 |