CVE-2021-28911

CRITICAL Year: 2021
CVSS v3 Score
9.8
Critical
CVSS v2 Score
10.0
Critical
Weakness Type
CWE-307
View all →

Vulnerability Description

BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /tmp path which contains some sensitive data (e.g. device serial number). Having those info, a possible loginId can be self-calculated in a brute force attack against BMX interface. This is usable and part of an attack chain to gain SSH root access.

Related Vulnerabilities

CVE-1999-1324

CRITICAL
CVSS:9.8(Critical)

VAXstations running Open VMS 5.3 through 5.5-2 with VMS DECwindows or MOTIF do not properly disable access to user accounts that exceed the break-in limit threshold for failed login attempts, which ma...

CWE-3071999

CVE-2001-0395

CRITICAL
CVSS:9.8(Critical)

Lightwave ConsoleServer 3200 does not disconnect users after unsuccessful login attempts, which could allow remote attackers to conduct brute force password guessing.

CWE-3072001

CVE-2001-1291

CRITICAL
CVSS:9.8(Critical)

The telnet server for 3Com hardware such as PS40 SuperStack II does not delay or disconnect remote attackers who provide an incorrect username or password, which makes it easier to break into the serv...

CWE-3072001

CVE-2001-1339

CRITICAL
CVSS:9.8(Critical)

Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password gue...

CWE-3072001

CVE-2013-4441

CRITICAL
CVSS:9.8(Critical)

The Phonemes mode in Pwgen 2.06 generates predictable passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CWE-3072013

CVE-2016-9124

CRITICAL
CVSS:9.8(Critical)

Revive Adserver before 3.2.3 suffers from Improper Restriction of Excessive Authentication Attempts. The login page of Revive Adserver is vulnerable to password-guessing attacks. An account lockdown f...

CWE-3072016