How severe is CVE-2023-24080?

CVE-2023-24080 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-24080

Name: myq
Author: chamberlain

9.8CRITICAL

A lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 (on iOS) allows attackers to compromise user accounts via a bruteforce attack.

게시됨: 2/21/2023업데이트됨: 3/14/2025

설명

A lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 (on iOS) allows attackers to compromise user accounts via a bruteforce attack.

AI 분석AI 기반

영향받는 제품

chamberlainmyq

5.222.0.32277

참조

http://chamberlain.com
Product
http://web.archive.org/web/20230122144550/https://brackish.io/chamberlain-myq-account-takeover/
https://archive.ph/NH0Bk
http://chamberlain.com
Product
http://web.archive.org/web/20230122144550/https://brackish.io/chamberlain-myq-account-takeover/
https://archive.ph/NH0Bk