VYPR
Unrated severityNVD Advisory· Published Apr 24, 2024· Updated Aug 2, 2024

Brute-force protection ineffective for some login methods

CVE-2024-28825

Description

Improper restriction of excessive authentication attempts on some authentication methods in Checkmk before 2.3.0b5 (beta), 2.2.0p26, 2.1.0p43, and in Checkmk 2.0.0 (EOL) facilitates password brute-forcing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Checkmk/Checkmkllm-fuzzy2 versions
    <2.3.0b5, <2.2.0p26, <2.1.0p43, =2.0.0+ 1 more
    • (no CPE)range: <2.3.0b5, <2.2.0p26, <2.1.0p43, =2.0.0
    • (no CPE)range: 2.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.