Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-307 (过多认证尝试的限制不恰当) — Vulnerability Class 327

327 vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-3993 Improper Restriction of Excessive Authentication Attempts in kareadita/kavita — kareadita/kavita 9.4 Critical2022-11-14
CVE-2022-3945 Improper Restriction of Excessive Authentication Attempts in kareadita/kavita — kareadita/kavita 7.5 -2022-11-11
CVE-2022-3741 Improper Restriction of Excessive Authentication Attempts in chatwoot/chatwoot — chatwoot/chatwoot 9.1 -2022-10-28
CVE-2022-39314 User enumeration in the code-based login and password reset forms — kirby 5.3 -2022-10-24
CVE-2022-31228 Dell EMC XtremIO 安全漏洞 — XtremIO 8.1 High2022-10-12
CVE-2022-2822 Authentication Bypass by Primary Weakness in octoprint/octoprint — octoprint/octoprint 9.1 -2022-08-15
CVE-2022-2457 Business-central 安全漏洞 — Red Hat Process Automation Manager 7 9.1 -2022-08-09
CVE-2022-31234 Dell EMC PowerStore 安全漏洞 — PowerStore 8.1 High2022-07-20
CVE-2022-2321 Improper Restriction of Excessive Authentication Attempts in heroiclabs/nakama — heroiclabs/nakama 9.8 -2022-07-05
CVE-2022-30235 Schneider Electric PowerLogic ION Setup 安全漏洞 — Wiser Smart 8.6 High2022-06-02
CVE-2022-29084 多款Dell产品安全漏洞 — Unity 8.1 High2022-06-02
CVE-2022-24044 多款Siemens产品安全漏洞 — Desigo DXR2 7.5 -2022-05-10
CVE-2022-26519 Interlogix Hills ComNav Improper Restriction of Excessive Authentication Attempts — Hills ComNav 5.5 Medium2022-04-20
CVE-2022-22561 Dell Technologies Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 8.1 High2022-04-12
CVE-2022-25820 Samsung fingerprint matching algorithm 安全漏洞 — Samsung Mobile Devices 4.2 Medium2022-03-08
CVE-2022-26314 Siemens Mendix 安全漏洞 — Mendix Forgot Password Appstore module 9.8 -2022-03-08
CVE-2022-22810 Schneider Electric 多款产品安全漏洞 — spaceLYnk (V2.6.2 and prior), Wiser for KNX (formerly homeLYnk) (V2.6.2 and prior), fellerLYnk (V2.6.2 and prior) 9.8 -2022-02-09
CVE-2022-22553 DELL EMC AppSync 安全漏洞 — AppSync 8.1 High2022-01-21
CVE-2021-41807 Lack of rate limiting in M-Files Server and M-Files Web products with versions before 21.12.10873.0, allows brute-forcing of certain type of user accounts. — M-Files Server 7.5 High2022-01-18
CVE-2021-42544 Lack of Rate limiting in Authentication in TopEase — TopEase 7.5 High2021-11-30
CVE-2021-41171 Bypass bruteforce protection on login form in elabftw — elabftw 5.9 Medium2021-10-22
CVE-2021-38474 InHand Networks IR615 Router — IR615 Router 6.3 Medium2021-10-19
CVE-2021-36285 Dell BIOS 安全漏洞 — CPG BIOS 5.7 Medium2021-09-28
CVE-2021-36284 Dell BIOS 安全漏洞 — CPG BIOS 5.7 Medium2021-09-28
CVE-2021-3663 Improper Restriction of Excessive Authentication Attempts in firefly-iii/firefly-iii — firefly-iii/firefly-iii 7.5 -2021-07-25
CVE-2021-32522 QSAN Storage Manager, XEVO, SANOS - Improper Restriction of Excessive Authentication Attempts — Storage Manager 9.8 Critical2021-07-07
CVE-2021-22915 Nextcloud server 处理逻辑错误漏洞 — Nextcloud Server 9.8 -2021-06-11
CVE-2021-33190 Bypass network access control — Apache APISIX Dashboard 5.3 -2021-06-08
CVE-2021-3412 3Scale 安全漏洞 — 3Scale 8.6 -2021-06-01
CVE-2021-22737 Schneider Electric homeLYnk和spaceLYnk 安全漏洞 — homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior 9.8 -2021-05-26

Vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当) represent 327 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.