Products
upKeeper Manager
- through 5.1.9
Source
80f39f49-2521-4ee7-9e17-af5d55e8032f
Tags
CVE-2024-42466 details
Published : Aug. 16, 2024, 2:15 p.m.
Last Modified : Aug. 16, 2024, 2:15 p.m.
Last Modified : Aug. 16, 2024, 2:15 p.m.
Description
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions product upKeeper Manager allows Authentication Abuse.This issue affects upKeeper Manager: through 5.1.9.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|---|---|
CWE-307 | Improper Restriction of Excessive Authentication Attempts | The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks. |
References
URL | Source |
---|---|
https://support.upkeeper.se/hc/en-us/articles/15432408367260-CVE-2024-42466-Lack-of-resources-and-rate-limiting-login | 80f39f49-2521-4ee7-9e17-af5d55e8032f |
This website uses the NVD API, but is not approved or certified by it.