Описание
The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.
Ссылки
- Broken Link
- Broken LinkPatchVendor Advisory
- Broken LinkVendor Advisory
- Product
- Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken LinkPatchVendor Advisory
- Broken LinkVendor Advisory
- Product
- Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:h:polycom:viewstation_128:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_128:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_512:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_512:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_dcp:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_dcp:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_fx_vs4000:4.1.5:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_h.323:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_h.323:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_mp:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_mp:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_sp_384:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_sp_384:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_v.35:6.5.1:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_v.35:7.2:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01713
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.
EPSS
Процентиль: 82%
0.01713
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-307