Описание
EMC RSA Authentication Agent for PAM 7.0 before 7.0.2.1 enforces the maximum number of login attempts within the PAM-enabled application codebase, instead of within the Agent codebase, which makes it easier for remote attackers to discover correct login credentials via a brute-force attack.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:emc:rsa_authentication_agent:7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:rsa_authentication_agent:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:rsa_authentication_agent:7.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00275
Низкий
5 Medium
CVSS2
Дефекты
CWE-255
Связанные уязвимости
github
больше 3 лет назад
EMC RSA Authentication Agent for PAM 7.0 before 7.0.2.1 enforces the maximum number of login attempts within the PAM-enabled application codebase, instead of within the Agent codebase, which makes it easier for remote attackers to discover correct login credentials via a brute-force attack.
EPSS
Процентиль: 51%
0.00275
Низкий
5 Medium
CVSS2
Дефекты
CWE-255