CVE-2024-8462 | Windmill 1.380.0 HTTP Request users.rs excessive authentication

Inserito da Angelo Barbosa | Set 5, 2024 | CVE

A vulnerability was found in Windmill 1.380.0. It has been classified as problematic. Affected is an unknown function of the file backend/windmill-api/src/users.rs of the component HTTP Request Handler. The manipulation leads to improper restriction of excessive authentication attempts.

This vulnerability is traded as CVE-2024-8462. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8462 | Windmill 1.380.0 HTTP Request users.rs excessive authentication

Post correlati

CVE-2023-50461 | Ivan Kartolo Direct Mail Extension on TYPO3 Configuration injection

CVE-2024-5173 | HT Mega Plugin up to 2.5.5 on WordPress Video Player Widget Setting cross site scripting

CVE-2022-48699 | Linux Kernel up to 5.15.67/5.19.8 debugfs_lookup memory leak (26e9a1ded892/0c32a93963e0/c2e406596571)

CVE-2023-43116 | Buildkite Elastic CI for AWS up to 5.22.4/6.7.0 PIPELINE_PATH symlink (ATREDIS-2023-0003)