CVE-2021-22530

CRITICAL Year: 2021
CVSS v3 Score
9.9
Critical
Weakness Type
CWE-667
View all →

Vulnerability Description

A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout when brute force attack is performed on API based login. This issue may lead to user account compromise if successful or may impact server performance. This issue impacts all NetIQ Advance Authentication before 6.3.5.1

Related Vulnerabilities

CVE-2019-5886

CRITICAL
CVSS:9.8(Critical)

An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file, there is no validation lock file in the Add method, which allows an attacker to reinstall the database. T...

CWE-6672019

CVE-2020-12658

CRITICAL
CVSS:9.8(Critical)

gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex before pthread exit in gp_worker_main() in gp_workers.c. NOTE: An upstream comment states "We are already on a shutdown path when runni...

CWE-6672020

CVE-2020-15674

HIGH
CVSS:8.8(High)

Mozilla developers reported memory safety bugs present in Firefox 80. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been explo...

CWE-6672020

CVE-2024-58087

HIGH
CVSS:8.1(High)

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix racy issue from session lookup and expire Increment the session reference count within the lock for lookup to avoid racy ...

CWE-6672024

CVE-2019-5886

CRITICAL
CVSS:9.8(Critical)

An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file, there is no validation lock file in the Add method, which allows an attacker to reinstall the database. T...

CWE-6672019

CVE-2020-12658

CRITICAL
CVSS:9.8(Critical)

gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex before pthread exit in gp_worker_main() in gp_workers.c. NOTE: An upstream comment states "We are already on a shutdown path when runni...

CWE-6672020