CVE-2022-43377
published 2023-04-18CVE-2022-43377: A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that could cause account takeover when a brute force attack is…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that
could cause account takeover when a brute force attack is performed on the account.
Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0
and prior)
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| schneider-electric | netbotz_355_firmware | 4.0.0 – 4.7.0 | — |
| schneider-electric | netbotz_450_firmware | 4.0.0 – 4.7.0 | — |
| schneider-electric | netbotz_455_firmware | 4.0.0 – 4.7.0 | — |
| schneider-electric | netbotz_550_firmware | 4.0.0 – 4.7.0 | — |
| schneider-electric | netbotz_570_firmware | 4.0.0 – 4.7.0 | — |
| schneider_electric | netbotz_4_355_450_455_550_570 | — | — |