cvedb.io
CVE-2026-14254
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2026-07-16T15:16:30.617 · Last modified 2026-07-16T17:47:18.287

Summary

A race condition in the account lockout mechanism in Delphix Continous Data allowed the lockout threshold to be bypassed through concurrent authentication requests. Parallel login attempts were processed before the failed-login counter and lockout status were updated, defeating brute-force protections and enabling continued password guessing against a targeted account.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.