Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2022/07/05 7:15 p.m.2 views

CVE-2022-2321

Improper Restriction of Excessive Authentication Attempts in GitHub repository heroiclabs/nakama prior to 3.13.0. This results in login brute-force attacks...

9.8CVSS7.1AI score0.01468EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/07/05 6:25 p.m.17 views

CVE-2022-2321 Improper Restriction of Excessive Authentication Attempts in heroiclabs/nakama

Improper Restriction of Excessive Authentication Attempts in GitHub repository heroiclabs/nakama prior to 3.13.0. This results in login brute-force attacks...

7.5CVSS9.8AI score0.01468EPSS
Exploits1References2
CVE
CVE
added 2022/07/05 6:25 p.m.77 views

CVE-2022-2321

CVE-2022-2321 affects the Nakama console (heroiclabs/nakama). The vulnerability arises from an improper restriction of excessive authentication attempts , enabling brute-force login attempts on the console. Affected condition is stated as Nakama prior to version 3.13.0. The available sources cons...

9.8CVSS8.7AI score0.01468EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/07/05 8:30 a.m.25 views

CVE-2022-2306 Insufficient Session Expiration in heroiclabs/nakama

Old session tokens can be used to authenticate to the application and send authenticated requests...

8.2CVSS7.6AI score0.00818EPSS
Exploits1References2
Huntr
Huntr
added 2022/01/21 10:24 a.m.10 views

Improper Privilege Management in heroiclabs/nakama

Description A predefined View Only user has access to the User Management function at the :7351//users endpoint. By default this is a predefined system administrator function, and no other users should be able to access this function. Proof of Concept - Create a View-only user with the...

0.8AI score
Exploits0
Rows per page
Query Builder