Security Advisory

CVE-2024-51558

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-04 12:15:45

Last updated 2024-11-04 15:04:26

Assigner CERT-In

State PUBLISHED

Description

This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed authentication attempts on its API based login. A remote attacker could exploit this vulnerability by conducting a brute force attack against legitimate user OTP, MPIN or password, which could lead to gain unauthorized access and compromise other user accounts.

← Browse all CVEs View on cve.org ↗