Arbitrary Authentication Attempts Vulnerability
CVE-2024-28022
5.6MEDIUM
Summary
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that if exploited allows a malicious user to perform an arbitrary number of authentication attempts using different passwords, and eventually gain access to the targeted account.
Affected Version(s)
FOXMAN-UN = FOXMAN-UN R16B
FOXMAN-UN = FOXMAN-UN R15B
FOXMAN-UN = FOXMAN-UN R16A
CVSS V3.1
Score:
5.6
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database