CVE-2022-37144 (plextrac) | allinfosecnews.com

Sept. 8, 2022, 1:15 a.m. |

National Vulnerability Database web.nvd.nist.gov

The PlexTrac platform prior to API version 1.17.0 does not restrict excessive MFA TOTP submission attempts. An unauthenticated remote attacker in possession of a valid username and password can bruteforce their way past MFA protections to login as the targeted user.

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months, 1 week ago | web.nvd.nist.gov

attackers cve denial of service issue +1

CVE-2023-40101 (android) 6 months, 1 week ago | web.nvd.nist.gov

android check collapse cve +7

CVE-2023-21377 (android) 6 months, 1 week ago | web.nvd.nist.gov

android bypass cve disclosure +8

CVE-2023-21380 (android) 6 months, 1 week ago | web.nvd.nist.gov

android bluetooth buffer buffer overflow +9

CVE-2023-21382 (android) 6 months, 1 week ago | web.nvd.nist.gov

access android check cve +11

CVE-2023-21381 (android) 6 months, 1 week ago | web.nvd.nist.gov

android arbitrary code code code execution +10

CVE-2023-21385 (android) 6 months, 1 week ago | web.nvd.nist.gov

android corruption cve disclosure +7

CVE-2023-21387 (android) 6 months, 1 week ago | web.nvd.nist.gov

android backup bypass cve +11

CVE-2023-21389 (android) 6 months, 1 week ago | web.nvd.nist.gov

android bypass check cve +10

Lead Security Engineer

@ JPMorgan Chase & Co. | Tampa, FL, United States

View on infosec-jobs.com

GTI Manager of Cybersecurity Operations

@ Grant Thornton | Tulsa, OK, United States

View on infosec-jobs.com

GCP Incident Response Engineer

@ Publicis Groupe | Dallas, Texas, United States

View on infosec-jobs.com

DevSecOps Engineer - CL - Santiago

@ Globant | Santiago de Chile, Santiago, CL

View on infosec-jobs.com

IT Security Analyst - State Government & Healthcare

@ NTT DATA | Little Rock, AR, US

View on infosec-jobs.com

Exploit Developer

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com