The software does not implement sufficient measures to prevent
					multiple failed authentication attempts within in a short time frame, making it
					more susceptible to brute force attacks.