What the vulnerability does
01Description
Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to 0.9.1.
CVE-2022-4797
CRITICAL
CVE-2022-4797: Improper Restriction of Excessive Authentication Attempts in usememos/memos
CVSS base score
9.8/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
December 28, 2022
CVE published
April 10, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-66482 Misskey has a login rate limit bypass via spoofed X-Forwarded-For header
CVE-2025-6029 KIA-branded Aftermarket Generic Smart Keyless Entry System Replay Attack
CVE-2017-7915
CVE-2023-43699
CVE-2021-32522 QSAN Storage Manager, XEVO, SANOS - Improper Restriction of Excessive Authentication Attempts
