Description

It is possible to cause account lockouts, effectively blocking users from accessing the system.

Impact

Avoid the access of valid users to the application.

Recommendation

Avoid blocking users accounts as a mechanism of protection, make it more restrictive or control it to prevent an exploitation by attackers.

Threat

Anonymous attacker from the Internet.

Expected Remediation Time

⏱️ 30 minutes.

Requirements

Fixes