Vulnerabilities > Plextrac

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-08	CVE-2022-37144	Improper Restriction of Excessive Authentication Attempts vulnerability in Plextrac The PlexTrac platform prior to API version 1.17.0 does not restrict excessive MFA TOTP submission attempts. network low complexity plextrac CWE-307	8.8
2022-09-08	CVE-2022-37145	Improper Restriction of Excessive Authentication Attempts vulnerability in Plextrac The PlexTrac platform prior to version 1.17.0 does not restrict excessive authentication attempts for accounts configured to use the PlexTrac authentication provider. network low complexity plextrac CWE-307	7.5
2022-09-08	CVE-2022-37146	Information Exposure Through Discrepancy vulnerability in Plextrac The PlexTrac platform prior to version 1.28.0 allows for username enumeration via HTTP response times on invalid login attempts for users configured to use the PlexTrac authentication provider. network low complexity plextrac CWE-203	5.3

Vulnerabilities > Plextrac {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Plextrac"}]}