2 matches found
CVE-2022-37145
The PlexTrac platform prior to version 1.17.0 does not restrict excessive authentication attempts for accounts configured to use the PlexTrac authentication provider. An unauthenticated remote attacker could perform a bruteforce attack on the login page with no time or attempt limitation in an...
CVE-2022-37145
The CVE describes an authentication-weakness in PlexTrac prior to 1.17.0: an unauthenticated remote attacker can perform brute-force login attempts on the PlexTrac login page without time/attempt limits aimed at accounts using the PlexTrac authentication provider. Affected software: PlexTrac befo...