github.com/icewhaletech/casaos-userservice is vulnerable to Password Brute Force Attack. The vulnerability is due to a lack of control on login attempts (missing a rate limit on login). This enables attackers to gain super user-level access to the server, allowing unauthorized access to the server.