CVE-2023-24051

Name of the Vulnerable Software and Affected Versions Connectize AC21000 G6 version 641.139.1.1256

Description A client-side rate limit issue in Connectize AC21000 G6 allows attackers to gain escalated privileges via brute force style attacks. This issue is related to a overly restrictive mechanism for blocking user credentials, which can be exploited by a remote attacker to implement a brute force attack.

Recommendations For version 641.139.1.1256, consider temporarily restricting access to the device to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the device for critical operations that require high security until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.