No Rate Limit Vulnerability in WiJungle NGFW Version U250 Allows for Account Take Over

No Rate Limit Vulnerability in WiJungle NGFW Version U250 Allows for Account Take Over

CVE-2022-33106 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

WiJungle NGFW Version U250 was discovered to be vulnerable to No Rate Limit attack, allowing the attacker to brute force the admin password leading to Account Take Over.

Learn more about our Web Application Penetration Testing UK.