Vulnerability Details CVE-2024-47088
This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive failed authentication attempts on its API based login. A remote attacker could exploit this vulnerability by conducting a brute force attack on login OTP, which could lead to gain unauthorized access to other user accounts.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.8%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2024-47088
-
cpe:2.3:a:apexsoftcell:ld_dp_back_office:*
-
cpe:2.3:a:apexsoftcell:ld_geo:*