4 matches found
EUVD-2025-131907
CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker on the local network to gain access to the user account by performing an arbitrary number of authentication attempts with different credentials on the /REST/shutdownnow endpoint...
CVE-2025-11566
CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker on the local network to gain access to the user account by performing an arbitrary number of authentication attempts with different credentials on the /REST/shutdownnow endpoint...
CVE-2025-11566
CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker on the local network to gain access to the user account by performing an arbitrary number of authentication attempts with different credentials on the /REST/shutdownnow endpoint...
CVE-2025-11566
CVE-2025-11566 affects Schneider Electric PowerChute Serial Shutdown. The vulnerability stems from CWE-307: Improper Restriction of Excessive Authentication Attempts on the local network, enabling an attacker to gain access by performing arbitrary authentication attempts against the POST /REST/sh...