CVE-2022-43377

Summary

A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could cause account takeover when a brute force attack is performed on the account.

Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0

and prior)

Affected Software

VendorProductVersion RangeStatus
Schneider ElectricNetBotz 4 - 355/450/455/550/570V4.7.0 and prioraffected

Weaknesses

  • CWE-307: CWE-307 Improper Restriction of Excessive Authentication Attempts

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References