Lucene search
K

15 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.15

A vulnerability has been identified in the ksmbd component of the Linux kernel the kernel SMB/CIFS server. A security measure designed to prevent dictionary attacks—which introduces a 5-second delay during session setup—can be bypassed through the use of asynchronous requests. This bypass defeats...

3.7CVSS5.8AI score0.00433EPSS
Exploits0References2
OSV
OSV
added 2025/07/31 8:44 p.m.7 views

CVE-2023-32251 Kernel: ksmbd brute force delay bypass via asynchronous requests

A vulnerability has been identified in the Linux kernel's ksmbd component kernel SMB/CIFS server. A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This bypass negates the...

3.7CVSS5.8AI score0.00433EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2024/05/20 1:35 p.m.599 views

Exploit for Improper Restriction of Excessive Authentication Attempts in Netgate Pfsense_Plus

CVE-2023-27100 - pfSense Anti-brute force protection bypass...

9.8CVSS9.5AI score0.09844EPSS
Exploits5
SUSE CVE
SUSE CVE
added 2023/05/20 2:16 a.m.2 views

SUSE CVE-2023-32251

A vulnerability has been identified in the Linux kernel's ksmbd component kernel SMB/CIFS server. A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This bypass negates the...

3.7CVSS6.9AI score0.00433EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.27 views

Fortinet Fortigate (FG-IR-22-444)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-444 advisory. - An improper restriction of excessive authentication attempts vulnerability CWE-307 in Fortinet FortiOS version 7.2.0 throug...

8.8CVSS8AI score0.00405EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2023/04/10 12:0 a.m.295 views

pfsenseCE 2.6.0 Protection Bypass

!/usr/bin/python3 Exploit Title: pfsenseCE v2.6.0 - Anti-brute force protection bypass Google Dork: intitle:"pfSense - Login" Date: 2023-04-07 Exploit Author: FabDotNET Fabien MAISONNETTE Vendor Homepage: https://www.pfsense.org/ Software Link:...

9.8CVSS9.4AI score0.09844EPSS
Exploits5
0day.today
0day.today
added 2023/04/10 12:0 a.m.297 views

pfsenseCE v2.6.0 - Anti-brute force protection bypass Exploit

!/usr/bin/python3 Exploit Title: pfsenseCE v2.6.0 - Anti-brute force protection bypass Google Dork: intitle:"pfSense - Login" Date: 2023-04-07 Exploit Author: FabDotNET Fabien MAISONNETTE Vendor Homepage: https://www.pfsense.org/ Software Link:...

9.8CVSS9.2AI score0.09844EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/04/08 12:0 a.m.298 views

pfsenseCE v2.6.0 - Anti-brute force protection bypass

!/usr/bin/python3 Exploit Title: pfsenseCE v2.6.0 - Anti-brute force protection bypass Google Dork: intitle:"pfSense - Login" Date: 2023-04-07 Exploit Author: FabDotNET Fabien MAISONNETTE Vendor Homepage: https://www.pfsense.org/ Software Link:...

9.8CVSS9.7AI score0.09844EPSS
Exploits5
GithubExploit
GithubExploit
added 2023/04/07 7:38 a.m.491 views

Exploit for Improper Restriction of Excessive Authentication Attempts in Netgate Pfsense_Plus

CVE-2023-27100 - pfSense Anti-brute force protection bypass...

9.8CVSS9.5AI score0.09844EPSS
Exploits5
OSV
OSV
added 2021/05/17 1:15 p.m.2 views

CVE-2021-27342

An authentication brute-force protection mechanism bypass in telnetd in D-Link Router model DIR-842 firmware version 3.0.2 allows a remote attacker to circumvent the anti-brute-force cool-down delay period via a timing-based side-channel attack...

5.9CVSS5.8AI score0.04562EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2020/06/08 3:5 p.m.88 views

Exploit for Improper Restriction of Excessive Authentication Attempts in Bludit

CVE-2019-17240https://www.cvedetails.com/cve/CVE-2019-17240...

9.8CVSS5.1AI score0.39598EPSS
Exploits9
securityvulns
securityvulns
added 2014/10/16 12:0 a.m.201 views

SEC Consult SA-20140710-0 :: Multiple critical vulnerabilities in Shopizer webshop

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20140710-0 ======================================================================= title: Multiple critical vulnerabilities in Shopizer webshop product: Shopizer vulnerable version: 1.1.5 and below fixed...

0.3AI score0.88829EPSS
Exploits16
exploitpack
exploitpack
added 2014/07/14 12:0 a.m.82 views

Shopizer 1.1.5 - Multiple Vulnerabilities

Shopizer 1.1.5 - Multiple Vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple critical vulnerabilities in Shopizer webshop product: Shopizer vulnerable...

7.5CVSS0.3AI score0.88829EPSS
Exploits16
0day.today
0day.today
added 2014/07/12 12:0 a.m.94 views

Shopizer 1.1.5 Multiple Vulnerability

Shopizer version 1.1.5 suffers from remote command execution, cross site request forgery, cross site scripting, data manipulation , authorization bypass and hardcoded key vulnerabilities. title: Multiple critical vulnerabilities in Shopizer webshop product: Shopizer vulnerable version: 1.1.5 and...

7.2AI score0.88829EPSS
Exploits16
exploitpack
exploitpack
added 2000/10/29 12:0 a.m.24 views

Cat Soft Serv-U FTP Server 2.5.x - Brute Force

Cat Soft Serv-U FTP Server 2.5.x - Brute Force source: https://www.securityfocus.com/bid/1860/info FTP Serv-U is an internet FTP server from CatSoft. FTP Serv-U contains an anti brute-force security feature which does not indicate whether an account is valid or not, after three unsuccessful login...

7.4AI score
Exploits0
Rows per page
Query Builder