CVE-2020-14484

OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass the system’s account lockout protection, which may allow brute force password attacks.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsma-20-184-01 Third Party Advisory US Government Resource
Configurations

Configuration 1

cpe:2.3:a:openclinic_ga_project:openclinic_ga:5.09.02:*:*:*:*:*:*:*
cpe:2.3:a:openclinic_ga_project:openclinic_ga:5.89.05b:*:*:*:*:*:*:*

Information

Published : 2020-07-20 03:15

Updated : 2020-07-22 07:11


NVD link : CVE-2020-14484

Mitre link : CVE-2020-14484

Products Affected
No products.
CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts