PT-2024-29962 · Unknown · Upkeeper Manager
Published
2024-08-16
·
Updated
2024-08-28
·
CVE-2024-42466
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
upKeeper Manager versions through 5.1.9
Description
The issue affects upKeeper Manager, allowing authentication abuse due to improper restriction of excessive authentication attempts. This enables potential attackers to exploit the system through repeated authentication attempts.
Recommendations
For versions through 5.1.9, update to a version that includes a fix for this issue to prevent authentication abuse.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Upkeeper Manager