2 matches found
CVE-2021-43271
Riverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11.1, 11.11.1a, 11.11.5, and 11.11.5a when configured to use local, RADIUS, or TACACS authentication logs usernames and passwords if either is entered incorrectly. If a user enters an incorrect username...
Brute Force Attacks
Microsoft.AspNetCore.Identity is vulnerable to brute force attacks. The application does not validate whether the lockout limit for incorrect login attempts has been reached, allowing a malicious user to be able to conduct a brute force attack...