Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-28 | CVE-2022-43904 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Security Guardium 11.3/11.4 IBM Security Guardium 11.3 and 11.4 could disclose sensitive information to an attacker due to improper restriction of excessive authentication attempts. | 7.5 |
| 2023-08-24 | CVE-2023-40706 | Improper Restriction of Excessive Authentication Attempts vulnerability in Opto22 Snap PAC S1 Firmware R10.3B There is no limit on the number of login attempts in the web server for the SNAP PAC S1 Firmware version R10.3b. | 9.8 |
| 2023-07-25 | CVE-2023-3548 | Improper Restriction of Excessive Authentication Attempts vulnerability in Johnsoncontrols IQ Wifi 6 Firmware An unauthorized user could gain account access to IQ Wifi 6 versions prior to 2.0.2 by conducting a brute force authentication attack. | 9.8 |
| 2023-07-10 | CVE-2023-35697 | Improper Restriction of Excessive Authentication Attempts vulnerability in Sick Icr890-4 Firmware Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a remote attacker to brute-force user credentials. | 7.5 |
| 2023-06-28 | CVE-2023-32224 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dlink Dsl-224 Firmware 3.0.10 D-Link DSL-224 firmware version 3.0.10 CWE-307: Improper Restriction of Excessive Authentication Attempts | 9.8 |
| 2023-06-15 | CVE-2022-32757 | Improper Restriction of Excessive Authentication Attempts vulnerability in IBM Security Directory Suite VA 8.0.1/8.0.1.19 IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. | 7.5 |
| 2023-06-13 | CVE-2022-42478 | Improper Restriction of Excessive Authentication Attempts vulnerability in Fortinet Fortisiem An Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM below 7.0.0 may allow a non-privileged user with access to several endpoints to brute force attack these endpoints. | 8.8 |
| 2023-06-09 | CVE-2023-3173 | Improper Restriction of Excessive Authentication Attempts vulnerability in Froxlor Improper Restriction of Excessive Authentication Attempts in GitHub repository froxlor/froxlor prior to 2.0.20. | 9.8 |
| 2023-06-08 | CVE-2023-34243 | Improper Restriction of Excessive Authentication Attempts vulnerability in Tgstation13 Tgstation-Server TGstation is a toolset to manage production BYOND servers. | 5.3 |
| 2023-06-01 | CVE-2023-33754 | Improper Restriction of Excessive Authentication Attempts vulnerability in Inpiazza Cloud Wifi The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on the number of attempts for password recovery, allowing attackers to brute force valid user accounts to gain access to login credentials. | 6.5 |