Описание
changepassword.cgi in Neoteris Instant Virtual Extranet (IVE) 3.x and 4.x, with LDAP authentication or NT domain authentication enabled, does not limit the number of times a bad password can be entered, which allows remote attackers to guess passwords via a brute force attack.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:neoteris:instant_virtual_extranet:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00712
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
changepassword.cgi in Neoteris Instant Virtual Extranet (IVE) 3.x and 4.x, with LDAP authentication or NT domain authentication enabled, does not limit the number of times a bad password can be entered, which allows remote attackers to guess passwords via a brute force attack.
EPSS
Процентиль: 72%
0.00712
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other