PT-2022-6266 · Netbotz 4 · Netbotz 4
Published
2022-11-08
·
Updated
2023-04-25
·
CVE-2022-43377
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
NetBotz 4 versions 4.7.0 and prior
Description
The issue is related to insufficient restriction of authentication attempts, allowing a remote attacker to bypass security restrictions using a brute force attack. This could lead to account takeover.
Recommendations
For NetBotz 4 versions 4.7.0 and prior, consider implementing additional security measures to restrict excessive authentication attempts, such as account lockout policies or rate limiting, to minimize the risk of exploitation.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netbotz 4