CVE-2024-9342
Description
In Eclipse GlassFish version 7.0.16 or earlier it is possible to perform Login Brute Force attacks as there is no limitation in the number of failed login attempts.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.098
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2024-10029,CVE-2024-10031,CVE-2024-9342,CVE-2024-9343 are affected in Glassfish - console-common 7.0.25 | Windows |
| Vulnerabilities CVE-2024-10029,CVE-2024-10031,CVE-2024-9342,CVE-2024-9343 are affected in Glassfish - console-common for Linux 7.0.25 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234