Unknown · Preferred Providers App · CVE-2020-8228
**Name of the Vulnerable Software and Affected Versions**
Preferred Providers app version 1.7.0
**Description**
A missing rate limit in the Preferred Providers app allowed an attacker to set the password an uncontrolled amount of times.
**Recommendations**
For version 1.7.0, consider implementing a rate limit on password setting to prevent exploitation until a patch is available.