CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/21 12:0 a.m.•7 views

PT-2026-42475

6.3CVSS5.8AI score0.00038EPSS

CVE•added 2026/05/07 7:30 a.m.•8 views

CVE-2025-2514

CVE-2025-2514 affects Hitachi Virtual Storage Platform families (G130/G150/G350/G370/G700/G900/F350/F370/F700/F900; E390/E590/E790/E990/E390H/E590H/E790H/E1090H; One Block 23/24/26/28). The issue is Improper Restriction of Excessive Authentication Attempts, impacting before listed DKCMAIN, GUM, a...

5.3CVSS5.8AI score0.00014EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/07 7:30 a.m.•29 views

CVE-2025-2514 Improper Restriction of Excessive Authentication Attempts vulnerability in Hitachi Virtual Storage Platform

Improper restriction of excessive authentication attempts vulnerability in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual Storage Platform One...

5.3CVSS0.00014EPSS

NVD•added 2026/05/03 12:16 a.m.•6 views

CVE-2026-7671

A vulnerability has been found in CodeWise Tornet Scooter Mobile App 4.75 on iOS/Android. The impacted element is an unknown function of the file /TwoFactor. Such manipulation leads to improper restriction of excessive authentication attempts. The attack may be performed from remote. Attacks of...

6.3CVSS0.00025EPSS

CNNVD•added 2026/05/03 12:0 a.m.•7 views

CodeWise Tornet Scooter Mobile App 安全漏洞

The CodeWise Tornet Scooter Mobile App is a shared electric scooter management application developed by CodeWise. Version 4.75 of the CodeWise Tornet Scooter Mobile App contains a security vulnerability. This vulnerability stems from improper restrictions placed on excessive authentication attemp...

6.3CVSS5.8AI score0.00025EPSS

CVE•added 2026/05/02 11:30 p.m.•6 views

CVE-2026-7671

The CVE-2026-7671 entry concerns CodeWise Tornet Scooter Mobile App 4.75 on iOS/Android. The vulnerability is tied to an unknown function in the file /TwoFactor that allows improper restriction of excessive authentication attempts. The issue is described as exploitable from remote with high compl...

6.3CVSS5AI score0.00025EPSS

Cvelist•added 2026/05/02 11:30 p.m.•26 views

CVE-2026-7671 CodeWise Tornet Scooter Mobile App TwoFactor excessive authentication

6.3CVSS0.00025EPSS

CVE•added 2026/04/17 11:36 a.m.•3 views

CVE-2025-46606

Dell PowerProtect Data Domain with DD OS Feature Release versions 8.4–8.5 are affected by an improper restriction of excessive authentication attempts, which could allow a high-privilege attacker with remote access to gain unauthorized access. The vulnerability details, including affected product...

7.2CVSS5.8AI score0.00024EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/04/17 11:36 a.m.•27 views

CVE-2025-46606

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 8.4 through 8.5 contain an improper restriction of excessive authentication attempts vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading...

6.2CVSS0.00024EPSS

ATTACKERKB•added 2026/04/17 11:36 a.m.•0 views

CVE-2025-46606

6.2CVSS5.8AI score0.00024EPSS

Positive Technologies•added 2026/04/17 12:0 a.m.•3 views

PT-2026-33443

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain with Data Domain Operating System DD OS versions 8.4 through 8.5 Description An improper restriction of excessive authentication attempts allows a high privileged attacker with remote access to potentially gain...

7.2CVSS5.8AI score0.00024EPSS

Cvelist•added 2026/04/14 3:16 p.m.•22 views

CVE-2026-2402

CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker to gain access to the user account by performing an arbitrary number of authentication attempts with different credentials on a sequence of requests to multiple endpoints...

6.9CVSS0.00066EPSS

Vulnrichment•added 2026/04/14 3:16 p.m.•0 views

CVE-2026-2402

6.9CVSS5.9AI score0.00066EPSS

Japan Vulnerability Notes•added 2026/03/31 6:53 a.m.•1 views

Security information for Hitachi Disk Array Systems

Overview A vulnerability exists in Hitachi Disk Array Systems that involves Improper Restriction of Excessive Authentication Attempts vulnerability. CVE-2025-2514 Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Please refer to the 'Vendor Informatio...

5.3CVSS5.9AI score0.00014EPSS

RedhatCVE•added 2026/03/26 3:14 p.m.•0 views

CVE-2026-22629

An improper restriction of excessive authentication attempts vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4 all versions, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.0 through 7.6.4,...

3.7CVSS5.7AI score0.00056EPSS

Cvelist•added 2026/03/11 5:43 p.m.•23 views

CVE-2026-31863 Improper Restriction of Excessive Authentication Attempts in github.com/anyproto/anytype-heart

Anytype Heart is the middleware library for Anytype. The challenge-based authentication for the local gRPC client API can be bypassed, allowing an attacker to gain access without the 4-digit code. This vulnerability is fixed in anytype-heart 0.48.4, anytype-cli 0.1.11, and Anytype Desktop 0.54.5...

3.6CVSS0.00022EPSS