Описание
Grandstream Networks UCM6510 v1.0.20.52 and before is vulnerable to Improper Restriction of Excessive Authentication Attempts. An attacker can perform an arbitrary number of authentication attempts using different passwords and eventually gain access to the targeted account using a brute force attack.
Ссылки
- Product
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.20.52 (включая)
Одновременно
cpe:2.3:o:grandstream:ucm6510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:grandstream:ucm6510:-:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-307
Связанные уязвимости
CVSS3: 6.5
github
6 месяцев назад
Grandstream Networks UCM6510 v1.0.20.52 and before is vulnerable to Improper Restriction of Excessive Authentication Attempts. An attacker can perform an arbitrary number of authentication attempts using different passwords and eventually gain access to the targeted account using a brute force attack.
EPSS
Процентиль: 13%
0.00044
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-307