CVE-2022-43377

A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could cause account takeover when a brute force attack is performed on the account. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:schneider-electric:netbotz_355_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:netbotz_355:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:schneider-electric:netbotz_450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:netbotz_450:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:schneider-electric:netbotz_455_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:netbotz_455:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:schneider-electric:netbotz_550_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:netbotz_550:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:schneider-electric:netbotz_570_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:netbotz_570:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-04-18 20:15

Updated : 2024-02-28 20:13


NVD link : CVE-2022-43377

Mitre link : CVE-2022-43377

CVE.ORG link : CVE-2022-43377


JSON object : View

Products Affected

schneider-electric

  • netbotz_550
  • netbotz_570_firmware
  • netbotz_355_firmware
  • netbotz_450_firmware
  • netbotz_355
  • netbotz_455_firmware
  • netbotz_450
  • netbotz_570
  • netbotz_550_firmware
  • netbotz_455
CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts