Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-307 (过多认证尝试的限制不恰当) — Vulnerability Class 327

327 vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-6030 Autoeastern Smart Keyless Entry System Replay Attack — Cyclone Matrix TRF 8.8AIHighAI2025-06-13
CVE-2025-6029 KIA-branded Aftermarket Generic Smart Keyless Entry System Replay Attack — Aftermarket Generic Smart Keyless Entry System 8.8AIHighAI2025-06-13
CVE-2025-43863 vantage6 lacks brute-force protection on change password functionality — vantage6 8.8AIHighAI2025-06-12
CVE-2025-49195 No protection against brute-force attacks — SICK Media Server 5.3 Medium2025-06-12
CVE-2025-49186 No brute-force protection — Field Analytics 5.3 Medium2025-06-12
CVE-2025-5864 Tenda TDSEE App Password Reset Confirmation Code ConfirmSmsCode excessive authentication — TDSEE App 3.7 Low2025-06-09
CVE-2025-48014 Improper Restriction of Excessive Authentication Attempts — SEL-5056 Software-Defined Network Flow Controller 7.5 High2025-05-20
CVE-2025-48187 RAGFlow 安全漏洞 — RAGFlow 9.1 Critical2025-05-17
CVE-2025-46739 Improper Restriction of Excessive Authentication Attempts — SEL Blueframe OS 8.1 High2025-05-12
CVE-2025-20196 Cisco IOS和Cisco IOS XE 安全漏洞 — IOS 5.3 Medium2025-05-07
CVE-2025-3709 Flowring Technology Agentflow - Account Lockout Bypass — Agentflow 9.8 Critical2025-05-02
CVE-2025-42600 Brute Force Attack Vulnerability in Meon KYC solutions — KYC solutions 9.8 -2025-04-23
CVE-2025-3556 ScriptAndTools eCommerce-website-in-PHP login.php excessive authentication — eCommerce-website-in-PHP 3.7 Low2025-04-14
CVE-2025-3555 ScriptAndTools eCommerce-website-in-PHP login.php excessive authentication — eCommerce-website-in-PHP 3.7 Low2025-04-14
CVE-2025-3129 Access code - Moderately critical - Access bypass - SA-CONTRIB-2025-028 — Access code 9.8AICriticalAI2025-04-02
CVE-2025-0417 Valmet DNA Lack of protection against brute force attacks — Valmet DNA 9.1AICriticalAI2025-04-01
CVE-2025-2911 Improper Restriction of Excessive Authentication Attempts vulnerability in MeetMe products — MeetMe 9.1 -2025-03-28
CVE-2025-1496 Improper Authentication in BG-TEK's Coslat Hotspot — Coslat Hotspot 6.5 Medium2025-03-20
CVE-2024-12039 Improper Restriction of Excessive Authentication Attempts in langgenius/dify — langgenius/dify 9.8 -2025-03-20
CVE-2024-51476 IBM Concert Software information disclosure — Concert Software 7.5 High2025-03-06
CVE-2025-23368 Org.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli 8.1 High2025-03-04
CVE-2025-1629 Excitel Broadband Private my Excitel App One-Time Password excessive authentication — my Excitel App 3.5 Low2025-02-24
CVE-2025-24806 Regulation applies separately to Username-based logins to Email-based logins in authelia — authelia 9.1 -2025-02-19
CVE-2025-22645 WordPress Real Estate Manager plugin <= 7.3 - Captcha Bypass Vulnerability vulnerability — Real Estate Manager 9.8 -2025-02-18
CVE-2024-23106 Fortinet FortiClientEMS 安全漏洞 — FortiClientEMS 7.7 High2025-01-14
CVE-2024-8429 Improper Authentication in Digital Operation Services' WiFiBurada — WiFiBurada 4.3 Medium2024-12-17
CVE-2024-38488 Dell RecoverPoint for Virtual Machines 安全漏洞 — RecoverPoint for Virtual Machines 6.5 Medium2024-12-13
CVE-2024-9928 Hitachi Energy NSD570 安全漏洞 — NSD570 Teleprotection Equipment 5.3 Medium2024-11-26
CVE-2024-49597 Dell Wyse Management Suite 安全漏洞 — Wyse Management Suite 7.6 High2024-11-26
CVE-2024-5716 Logsign Unified SecOps Platform Authentication Bypass Vulnerability — Unified SecOps Platform 9.8 -2024-11-22

Vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当) represent 327 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.