exploitDog

GHSA-c359-g3mh-v8vw

Опубликовано: 23 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

DECISO OPNsense 23.1 does not impose rate limits for authentication, allowing attackers to perform a brute-force attack to bypass authentication.

DECISO OPNsense 23.1 does not impose rate limits for authentication, allowing attackers to perform a brute-force attack to bypass authentication.

Ссылки

EPSS

Процентиль: 35%

0.00147

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307

Связанные уязвимости

CVE-2023-27152

CVSS3: 9.8

nvd

больше 2 лет назад

DECISO OPNsense 23.1 does not impose rate limits for authentication, allowing attackers to perform a brute-force attack to bypass authentication.

EPSS

Процентиль: 35%

0.00147

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307