Lucene search
@huntrdevCVE-2022-2525HistoryApr 15, 2023 - 1:15 p.m.
CVE-2022-2525
2023-04-1513:15:44
CWE-307
@huntrdev
web.nvd.nist.gov
229
2
cve-2022-2525
nvd
github
authentication
excessive attempts
security
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.002
Percentile
61.7%
Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web prior to 0.6.20.
Affected configurations
Node
calibre-web_projectcalibre-webRange<0.6.20
| Vendor | Product | Version | CPE |
|---|---|---|---|
| calibre-web_project | calibre-web | * | cpe:2.3:a:calibre-web_project:calibre-web:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "janeczku",
"product": "janeczku/calibre-web",
"versions": [
{
"version": "unspecified",
"lessThan": "0.6.20",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
github
github
Improper Restriction of Excessive Authentication Attempts in calibreweb
2023-04-15 15:30:15
veracode
veracode
Improper Authentication
2023-04-26 13:12:04
osv
osv
CVE-2022-2525
2023-04-15 13:15:44
Improper Restriction of Excessive Authentication Attempts in calibreweb
2023-04-15 15:30:15
nvd
nvd
CVE-2022-2525
2023-04-15 13:15:44
cvelist
cvelist
huntr
huntr
Improper Restriction of Excessive Authentication Attempts in login feature
2022-06-01 05:25:00
prion
prion
Input validation
2023-04-15 13:15:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.5
Confidence
High
EPSS
0.002
Percentile
61.7%
Related for CVE-2022-2525