CVE-2022-37772

Name of the Vulnerable Software and Affected Versions Maarch RM version 2.8.3

Description The issue is related to an improper restriction of excessive authentication attempts due to excessive verbose responses from the application. This could allow an unauthenticated remote attacker to potentially exploit the issue, leading to compromised accounts.

Recommendations For Maarch RM version 2.8.3, consider implementing rate limiting or IP blocking to restrict excessive authentication attempts as a temporary workaround until a patch is available. Restrict access to the authentication module to minimize the risk of exploitation. Avoid using verbose responses in the application to reduce the attack surface.