Vulnerability Details CVE-2024-45589
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive authentication attempts and allows a remote attacker to cause a denial of service via the username parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 82.2%
CVSS Severity
CVSS v3 Score 5.9
References
Products affected by CVE-2024-45589
-
cpe:2.3:a:identityautomation:rapididentity:2023.0.2
-
cpe:2.3:a:identityautomation:rapididentity:2024.06.0
-
cpe:2.3:a:identityautomation:rapididentity:2024.07.0
-
cpe:2.3:a:identityautomation:rapididentity:2024.08.0