exploitDog

GHSA-h82q-3jgp-hh7x

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.

Ссылки

EPSS

Процентиль: 59%

0.00386

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-5964

CVSS3: 9.8

nvd

около 9 лет назад

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.

EPSS

Процентиль: 59%

0.00386

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284