PT-2024-24846 · Metagauss · Metagauss Profilegrid
Kyle Sanchez
·
Published
2024-05-17
·
Updated
2024-05-18
·
CVE-2024-32774
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Metagauss ProfileGrid versions through 5.8.2
Description
The issue is related to an Improper Restriction of Excessive Authentication Attempts, allowing the removal of important client functionality.
Recommendations
For Metagauss ProfileGrid versions through 5.8.2, update to a version later than 5.8.2 to resolve the issue.
As a temporary workaround, consider restricting access to authentication mechanisms to minimize the risk of exploitation.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Metagauss Profilegrid