CVE-2021-42544
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
Missing Rate Limiting in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 on the Login Form allows an unauthenticated remote attacker to perform multiple login attempts, which facilitates gaining privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Business-DNA Solutions GmbH | TopEase | unspecified <= 7.1.28 | affected |
| Business-DNA Solutions GmbH | TopEase | next of 7.1.28 < unspecified | unknown |
Weaknesses
- CWE-307: CWE-307 Improper Restriction of Excessive Authentication Attempts
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.