Backslash Vulnerability Database Improper Restriction of Excessive Authentication Attempts

Improper Restriction of Excessive Authentication Attempts

CWE-307

Overtime trend (NVD)

CVSS severity (NVD, All Time)

Per technology (GHSA, All time)

  • 33%-Composer
  • 24%-Pip
  • 21%-Maven
  • 21%-Others

Short description

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks.

Best practices to prevent this CWE

  • LinkedIn Icon
  • Facebook Icon
  • X Icon
  • Link Icon