Vulnerabilities > Improper Restriction of Excessive Authentication Attempts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-23 | CVE-2023-27152 | Improper Restriction of Excessive Authentication Attempts vulnerability in Opnsense 23.1 DECISO OPNsense 23.1 does not impose rate limits for authentication, allowing attackers to perform a brute-force attack to bypass authentication. | 9.8 |
| 2023-10-23 | CVE-2023-37635 | Improper Restriction of Excessive Authentication Attempts vulnerability in Uvdesk Community-Skeleton 1.1.1 UVDesk Community Skeleton v1.1.1 allows unauthenticated attackers to perform brute force attacks on the login page to gain access to the application. | 9.8 |
| 2023-10-19 | CVE-2022-24402 | Improper Restriction of Excessive Authentication Attempts vulnerability in Midnightblue Tetra:Burst The TETRA TEA1 keystream generator implements a key register initialization function that compresses the 80-bit key to only 32 bits for usage during the keystream generation phase, which is insufficient to safeguard against exhaustive search attacks. | 7.5 |
| 2023-10-16 | CVE-2023-45149 | Improper Restriction of Excessive Authentication Attempts vulnerability in Nextcloud Talk Nextcloud talk is a chat module for the Nextcloud server platform. | 4.3 |
| 2023-10-16 | CVE-2023-45148 | Improper Restriction of Excessive Authentication Attempts vulnerability in Nextcloud Server Nextcloud is an open source home cloud server. | 4.3 |
| 2023-10-13 | CVE-2023-39960 | Improper Restriction of Excessive Authentication Attempts vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. | 7.5 |
| 2023-10-11 | CVE-2023-44111 | Improper Restriction of Excessive Authentication Attempts vulnerability in Huawei Emui and Harmonyos Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2023-10-11 | CVE-2023-44096 | Improper Restriction of Excessive Authentication Attempts vulnerability in Huawei Emui and Harmonyos Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2023-10-09 | CVE-2023-43699 | Improper Restriction of Excessive Authentication Attempts vulnerability in Sick Apu0200 Firmware Improper Restriction of Excessive Authentication Attempts in RDT400 in SICK APU allows an unprivileged remote attacker to guess the password via trial-and-error as the login attempts are not limited. | 7.5 |
| 2023-09-27 | CVE-2023-42818 | Improper Restriction of Excessive Authentication Attempts vulnerability in Fit2Cloud Jumpserver JumpServer is an open source bastion host. | 9.8 |