Описание
Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have had more than 10 failed authentication attempts, but instead allows hundreds of failed authentication attempts, because concurrent attempts are mishandled.
EPSS
Процентиль: 18%
0.00057
Низкий
3.5 Low
CVSS3
Дефекты
CWE-362
Связанные уязвимости
CVSS3: 3.5
github
11 месяцев назад
Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have had more than 10 failed authentication attempts, but instead allows hundreds of failed authentication attempts, because concurrent attempts are mishandled.
EPSS
Процентиль: 18%
0.00057
Низкий
3.5 Low
CVSS3
Дефекты
CWE-362