CVE-2020-7525

High

Improper Restriction of Excessive Authentication Attempts vulnerability exists in all hardware versions of spaceLYnk and Wiser for KNX…

schneider·CWE-307·Published 2020-08-31

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

230 chars

Improper Restriction of Excessive Authentication Attempts vulnerability exists in all hardware versions of spaceLYnk and Wiser for KNX (formerly homeLYnk) which could allow an attacker to guess a password when brute force is used.

NVDen

230 chars

NVDes

286 chars

Se presenta una vulnerabilidad de Restricción Inapropiada de Intentos de Autenticación Excesivos en todas las versiones de hardware de spaceLYnk y Wiser para KNX (anteriormente homeLYnk) que podría permitir a un atacante adivinar una contraseña cuando es usado un ataque de fuerza bruta

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N