Source |
CVE Liste |
Identifiant |
8405229 |
Date de publication |
2023-11-03 05:15:29 (vue: 2023-11-03 11:09:31) |
Titre |
CVE-2023-41350 |
Texte |
Chunghwa Telecom Nokia G-040W-Q a une vulnérabilité de mesures insuffisantes pour empêcher de multiples tentatives d'authentification ratées.Un attaquant distant non authentifié peut exécuter un javascript conçu pour exposer CAPTCHA dans Page, ce qui facilite les bots pour contourner le chèque CAPTCHA et plus sensible aux attaques de force brute.
Chunghwa Telecom NOKIA G-040W-Q has a vulnerability of insufficient measures to prevent multiple failed authentication attempts. An unauthenticated remote attacker can execute a crafted Javascript to expose captcha in page, making it very easy for bots to bypass the captcha check and more susceptible to brute force attacks. |
Envoyé |
Oui |
Condensat |
040w 2023 41350 attacker attacks attempts authentication bots brute bypass can captcha check chunghwa crafted cve easy execute expose failed force has insufficient javascript making measures more multiple nokia page prevent remote susceptible telecom unauthenticated very vulnerability |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|