CVE-2024-3461

Name of the Vulnerable Software and Affected Versions KioWare for Windows versions all through 8.35

Description The issue allows for brute forcing the PIN number that protects the application from being closed, due to the lack of mechanisms preventing excessive guessing of the number.

Recommendations For versions all through 8.35, consider implementing a mechanism to limit the number of PIN guesses to prevent brute force attacks, such as temporarily locking out the application after a certain number of incorrect attempts. As a temporary workaround, consider restricting access to the PIN-protected feature until a more robust security mechanism is implemented. At the moment, there is no information about a newer version that contains a fix for this vulnerability.