Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-21500
HistoryFeb 17, 2024 - 5:15 a.m.

Design/Logic Flaw

2024-02-1705:15:00
PRIOn knowledge base
www.prio-n.com
4
vulnerable
improper restriction
excessive authentication attempts
two-factor authentication
bypass
blocking mechanism
automation

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON

All versions of the package github.com/greenpau/caddy-security are vulnerable to Improper Restriction of Excessive Authentication Attempts via the two-factor authentication (2FA). Although the application blocks the user after several failed attempts to provide 2FA codes, attackers can bypass this blocking mechanism by automating the application’s full multistep 2FA process.

Related

cve 1
cvelist 1
github 1
osv 2
veracode 1
nvd 1
cve
cve
CVE-2024-21500
2024-02-17 05:15:10
cvelist
cvelist
CVE-2024-21500
2024-02-17 05:00:06
github
github
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security
2024-02-17 06:30:35
osv
osv
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security
2024-02-17 06:30:35
Improper Restriction of Excessive Authentication Attempts in github.com/greenpau/caddy-security
2024-06-28 15:28:53
veracode
veracode
Improper Restriction Of Excessive Authentication Attempts
2024-02-19 16:52:37
nvd
nvd
CVE-2024-21500
2024-02-17 05:15:10

7.4 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for PRION:CVE-2024-21500
cve1cvelist1github1osv2veracode1nvd1