Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-20 | CVE-2020-14494 | Improper Restriction of Excessive Authentication Attempts vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b contain an authentication mechanism within the system that does not provide sufficient complexity to protect against brute force attacks, which may allow unauthorized users to access the system after no more than a fixed maximum number of attempts. | 9.8 |
| 2020-07-20 | CVE-2020-14484 | Improper Restriction of Excessive Authentication Attempts vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks. | 9.8 |
| 2020-07-07 | CVE-2020-15367 | Improper Restriction of Excessive Authentication Attempts vulnerability in Venki Supravizio BPM 10.1.2 Venki Supravizio BPM 10.1.2 does not limit the number of authentication attempts. | 9.8 |
| 2020-06-19 | CVE-2019-20881 | Improper Restriction of Excessive Authentication Attempts vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 7.3 |
| 2020-06-16 | CVE-2020-7508 | Improper Restriction of Excessive Authentication Attempts vulnerability in Schneider-Electric Easergy T300 Firmware 1.5.2 A CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an attacker to gain full access by brute force. | 9.8 |
| 2020-06-09 | CVE-2020-13872 | Improper Restriction of Excessive Authentication Attempts vulnerability in Royalapps Royal TS Royal TS before 5 has a 0.0.0.0 listener, which makes it easier for attackers to bypass tunnel authentication via a brute-force approach. | 8.8 |
| 2020-06-04 | CVE-2020-13835 | Improper Restriction of Excessive Authentication Attempts vulnerability in Google Android 8.0 An issue was discovered on Samsung mobile devices with O(8.x) (with TEEGRIS) software. | 9.8 |
| 2020-06-04 | CVE-2020-13805 | Improper Restriction of Excessive Authentication Attempts vulnerability in Foxitsoftware Reader An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. | 9.8 |
| 2020-06-04 | CVE-2020-4193 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Security Guardium 11.1 IBM Security Guardium 11.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. | 9.8 |
| 2020-05-28 | CVE-2020-4232 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Security Identity Governance and Intelligence 5.2.6 IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to enumerate usernames to find valid login credentials which could be used to attempt further attacks against the system. | 7.5 |