CVE-2024-9342

🗓️ 16 Jul 2025 10:14:28Reported by eclipseType

Eclipse GlassFish 7.0.16 allows unlimited failed logins, risking Login Brute Force attacks.

Reporter	Title	Published	Views	Family All 15
ATTACKERKB	CVE-2024-9342	16 Jul 202510:14	–	attackerkb
Circl	CVE-2024-9342	21 Jul 202507:07	–	circl
CNNVD	Eclipse GlassFish 安全漏洞	16 Jul 202500:00	–	cnnvd
Cvelist	CVE-2024-9342	16 Jul 202510:14	–	cvelist
EUVD	EUVD-2024-54788	3 Oct 202520:07	–	euvd
Github Security Blog	Eclipse GlassFish is vulnerable to Login Brute Force attacks through unlimited failed login attempts	16 Jul 202512:30	–	github
NVD	CVE-2024-9342	16 Jul 202511:15	–	nvd
OSV	GHSA-99F7-HP6J-V6Q4 Eclipse GlassFish is vulnerable to Login Brute Force attacks through unlimited failed login attempts	16 Jul 202512:30	–	osv
Positive Technologies	PT-2025-29719	16 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-9342	18 Jul 202510:59	–	redhatcve

NVD

Node

eclipse glassfishMatch7.0.16

[
  {
    "vendor": "Eclipse Foundation",
    "product": "Eclipse Glassfish",
    "versions": [
      {
        "status": "affected",
        "version": "5.1.0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "6.0.0",
        "lessThanOrEqual": "6.2.5",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.25",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "7.1.0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "8.0.0",
        "lessThan": "8.0.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
gitlab	www.gitlab.eclipse.org/security/cve-assignement/-/issues/33

18 Jun 2026 14:17Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.19.8

CVSS 46.3

EPSS0.00403

SSVC

CWE-307