Lucene search
+L

5 matches found

redhat
redhat
•added 2026/05/18 12:12 p.m.•27 views

org.wildfly.core:wildfly-elytron-integration: Wildfly Elytron Brute Force Attack via CLI

A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks via CLI...

8.1CVSS7.2AI score0.00817EPSS
Exploits1References5
euvd
euvd
•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-6713

Malicious code in bioql PyPI...

3.5CVSS6.6AI score0.00197EPSS
Exploits0References3
cve
cve
•added 2025/07/03 11:25 a.m.•29 views

CVE-2025-27449

CVE-2025-27449 affects Endress+Hauser MEAC300-FNADE4, where the authentication mechanism does not sufficiently limit consecutive failed attempts, enabling brute-force scenarios. Documented details indicate a network-remote vulnerability with high impact on confidentiality, integrity, and availabi...

9.8CVSS6.7AI score0.00508EPSS
Exploits0References6Affected Software1
vulnrichment
vulnrichment
•added 2025/03/19 12:0 a.m.•8 views

CVE-2025-30235

Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have had more than 10 failed authentication attempts, but instead allows hundreds of failed authentication attempts, because concurrent attempts are mishandled...

3.5CVSS7.3AI score0.00197EPSS
Exploits0References2
prion
prion
•added 2007/10/28 5:8 p.m.•17 views

Authentication flaw

initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging...

4.9CVSS6.6AI score0.00942EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder