Vulnerability Details CVE-2023-33754
The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on the number of attempts for password recovery, allowing attackers to brute force valid user accounts to gain access to login credentials.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 46.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-33754
-
cpe:2.3:a:inpiazza:cloud_wifi:-