CVE-2023-4094

Name of the Vulnerable Software and Affected Versions ARCONTE Aurea version 1.5.0.0

Description The authentication system could allow an attacker to make incorrect access requests, blocking each legitimate account and causing a denial of service. A resource has been identified that could allow circumventing the attempt limit set in the login form.

Recommendations For version 1.5.0.0, consider restricting access to the login form to minimize the risk of exploitation. As a temporary workaround, limit the number of incorrect access requests to prevent denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.