exploitDog

GHSA-q9p8-42p3-gq3h

Опубликовано: 25 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

SpliceCom Maximiser Soft PBX v1.5 and before does not restrict excessive authentication attempts, allowing attackers to bypass authentication via a brute force attack.

SpliceCom Maximiser Soft PBX v1.5 and before does not restrict excessive authentication attempts, allowing attackers to bypass authentication via a brute force attack.

Ссылки

EPSS

Процентиль: 12%

0.00039

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307

Связанные уязвимости

CVE-2023-33759

CVSS3: 9.8

nvd

около 2 лет назад

SpliceCom Maximiser Soft PBX v1.5 and before does not restrict excessive authentication attempts, allowing attackers to bypass authentication via a brute force attack.

EPSS

Процентиль: 12%

0.00039

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-307