CVE-2025-3129

CVE-2025-3129: Access code - Moderately critical - Access bypass - SA-CONTRIB-2025-028

Vendor Drupal
Product Access code
Weakness CWE-307 · Brute force
Published April 2, 2025
Last update April 15, 2025

CVSS base score

What the vulnerability does

01Description

Improper Restriction of Excessive Authentication Attempts vulnerability in Drupal Access code allows Brute Force.This issue affects Access code: from 0.0.0 before 2.0.4.

Key dates

02Disclosure timeline

April 2, 2025 CVE published
April 15, 2025 Record updated