Weaknesses of type CWE-307
411 resultsCVE-2024-49597HIGHDell Wyse Management Suite, versions WMS 4.4 and prior, contain an Improper Restriction of Excessive Authentication Attempts vulnerability. EPSS 0.6%CVE-2023-42480MEDIUMInformation Disclosure in NetWeaver AS Java LogonEPSS 0.5%CVE-2024-51558CRITICALBrute Force Attack Vulnerability in Wave 2.0EPSS 0.5%CVE-2026-33935HIGHMyTube has Unauthenticated Account Lockout via Shared Login Attempt StateEPSS 0.5%CVE-2024-8462MEDIUMWindmill HTTP Request users.rs excessive authenticationEPSS 0.5%CVE-2024-41904HIGHA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V2.0). The affected application do not prEPSS 0.5%CVE-2023-54347HIGHOpenEMR 7.0.1 Authentication Brute Force Mitigation BypassEPSS 0.5%CVE-2023-40706HIGHImproper Restriction of Excessive Authentication Attempts in OPTO 22 SNAP PAC S1 Built-in Web ServerEPSS 0.5%CVE-2024-21500MEDIUMAll versions of the package github.com/greenpau/caddy-security are vulnerable to Improper Restriction of Excessive Authentication Attempts vEPSS 0.5%CVE-2022-42478HIGHAn Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM below 7.0.0 may allow a non-privileged user with access EPSS 0.5%CVE-2026-32292CRITICALGL-iNet Comet (GL-RM1) KVM insufficient login rate-limitingEPSS 0.5%CVE-2023-33868MEDIUMPiiGAB M-Bus Improper Restriction of Excessive Authentication AttemptsEPSS 0.5%CVE-2022-38491HIGHAn issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against brute-fEPSS 0.5%CVE-2023-45582MEDIUMAn improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail webmail version 7.2.0 through 7.2.4, 7.0.0EPSS 0.5%CVE-2024-28825MEDIUMBrute-force protection ineffective for some login methodsEPSS 0.5%CVE-2026-25945HIGHEV2GO ev2go.io Improper Restriction of Excessive Authentication AttemptsEPSS 0.5%CVE-2026-33152CRITICALTandoor Recipes Vulnerable to Unrestricted Brute-Force via BasicAuthenticationEPSS 0.5%CVE-2025-54833MEDIUMOPEXUS FOIAXpress Public Access Link (PAL) account-lockout and CAPTCHA protection bypassEPSS 0.5%CVE-2022-2457MEDIUMA flaw was found in Red Hat Process Automation Manager 7 where an attacker can benefit from a brute force attack against Administration ConsEPSS 0.5%CVE-2024-30390MEDIUMJunos OS Evolved: Connection limits is not being enforced while the resp. rate limit is being enforcedEPSS 0.5%