Filtered by vendor Brokeragetechnologysolutions Subscriptions
Filtered by product Wave 2.0 Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-51558 2 63moons, Brokeragetechnologysolutions 3 Aero, Wave 2.0, Wave 2.0 2024-11-08 9.8 Critical
This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed authentication attempts on its API based login. A remote attacker could exploit this vulnerability by conducting a brute force attack against legitimate user OTP, MPIN or password, which could lead to gain unauthorized access and compromise other user accounts.