Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-307 (过多认证尝试的限制不恰当) — Vulnerability Class 327

327 vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-6928 Improper Restriction of Excessive Authentication Attempts — ETL3100 9.8 Critical2023-12-19
CVE-2023-6756 Thecosy IceCMS Captcha login excessive authentication — IceCMS 5.3 Medium2023-12-13
CVE-2023-35039 WordPress Password Reset with Code for WordPress REST API Plugin <= 0.0.15 is vulnerable to Broken Authentication — Password Reset with Code for WordPress REST API 9.8 Critical2023-12-07
CVE-2023-46745 Rate limiting Bypass on login page in libreNMS — librenms 5.3 Medium2023-11-17
CVE-2023-45582 Fortinet FortiMail 安全漏洞 — FortiMail 5.3 Medium2023-11-14
CVE-2023-42480 Information Disclosure in NetWeaver AS Java Logon — NetWeaver AS Java 5.3 Medium2023-11-14
CVE-2023-41270 Samsung Smart TV UE40D7000 WPS DoS attack — UE40D7000 3.5 Low2023-11-08
CVE-2023-4625 Denial-of-Service(DoS) Vulnerability in Web server function on MELSEC Series CPU module — MELSEC iQ-F Series FX5U-32MT/ES 5.3 Medium2023-11-06
CVE-2023-41350 Chunghwa Telecom NOKIA G-040W-Q - Excessive Authentication Attempts — NOKIA G-040W-Q 7.5 High2023-11-03
CVE-2023-5754 Improper Restriction of Excessive Authentication Attempts in Sielco PolyEco1000 — PolyEco1000 9.1 Critical2023-10-26
CVE-2023-46123 jumpserver is vulnerable to password brute-force protection bypass via arbitrary IP values — jumpserver 5.3 Medium2023-10-25
CVE-2023-45149 Password of talk conversations can be bruteforced in Nextcloud — security-advisories 4.3 Medium2023-10-16
CVE-2023-45148 Rate limiter not working reliable when Memcached is installed in Nextcloud — security-advisories 4.3 Medium2023-10-16
CVE-2023-39960 Nextcloud Server has improper restriction of excessive authentication attempts on WebDAV endpoint — security-advisories 5.0 Medium2023-10-13
CVE-2023-36434 Windows IIS Server Elevation of Privilege Vulnerability — Windows 10 Version 22H2 9.8 Critical2023-10-10
CVE-2023-43699 SICK APU RDT400 安全漏洞 — APU0200 7.5 High2023-10-09
CVE-2023-26271 IBM Security Guardium Data Encryption information disclosure — Guardium Cloud Key Manager 5.3 Medium2023-08-28
CVE-2022-43904 IBM Security Guardium information disclosure — Security Guardium 7.5 High2023-08-27
CVE-2023-40706 Improper Restriction of Excessive Authentication Attempts in OPTO 22 SNAP PAC S1 Built-in Web Server — SNAP PAC S1 8.6 High2023-08-24
CVE-2023-39958 Missing brute force protection on password reset token OAuth2 API controller — security-advisories 5.8 Medium2023-08-10
CVE-2023-21709 Microsoft Exchange Server Elevation of Privilege Vulnerability — Microsoft Exchange Server 2019 Cumulative Update 12 9.8 Critical2023-08-08
CVE-2023-3669 CODESYS: Missing Brute-Force protection in CODESYS Development System — CODESYS Development System 3.3 Low2023-08-03
CVE-2023-3548 IQ Wifi 6 — IQ Wifi 6 8.3 High2023-07-25
CVE-2023-32657 Weintek Weincloud Improper Restriction of Excessive Authentication Attempts — Weincloud 5.3 Medium2023-07-19
CVE-2023-29301 Adobe ColdFusion Improper Restriction of Excessive Authentication Attempts Security feature bypass — ColdFusion 7.5 High2023-07-12
CVE-2023-36917 Password Change rate limit bypass in SAP BusinessObjects Business Intelligence Platform — SAP BusinessObjects Business Intelligence Platform 5.9 Medium2023-07-11
CVE-2023-3605 PHPGurukul Online Shopping Portal Registration Page excessive authentication — Online Shopping Portal 6.5 Medium2023-07-10
CVE-2023-35697 SICK ICR890-4 安全漏洞 — ICR890-4 5.3 Medium2023-07-10
CVE-2023-33868 PiiGAB M-Bus Improper Restriction of Excessive Authentication Attempts — M-Bus SoftwarePack 5.9 Medium2023-07-06
CVE-2023-32224 D-Link DSL-224 firmware version 3.0.10 CWE-307: Improper Restriction of Excessive Authentication Attempts — DSL-224 firmware version 3.0.10 9.8 Critical2023-06-28

Vulnerabilities classified as CWE-307 (过多认证尝试的限制不恰当) represent 327 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.