Описание
An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version V1.0.0 does not implement rate limiting to /api/login allowing attackers to brute force password enumerations.
Ссылки
- Not Applicable
- Broken Link
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:dbitnet:dbit_n300_t1_pro_firmware:1.0.0:*:*:*:*:*:*:*
cpe:2.3:h:dbitnet:dbit_n300_t1_pro:-:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00033
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-307
Связанные уязвимости
CVSS3: 6.5
github
около 2 месяцев назад
An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version V1.0.0 does not implement rate limiting to /api/login allowing attackers to brute force password enumerations.
EPSS
Процентиль: 9%
0.00033
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-307