CWE-307 - CERT CVE

CWE-307 - Improper Restriction of Excessive Authentication Attempts

The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more susceptible to brute force attacks.

CAPEC ID Naziv
CAPEC-16 Dictionary-based Password Attack
CAPEC-49 Password Brute Forcing
CAPEC-560 Use of Known Domain Credentials
CAPEC-565 Password Spraying
CAPEC-600 Credential Stuffing
CAPEC-652 Use of Known Kerberos Credentials
CAPEC-653 Use of Known Windows Credentials