Количество 3
Количество 3
CVE-2016-6144
The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," which makes it easier for remote attackers to bypass authentication via a brute force attack, aka SAP Security Note 2216869.
GHSA-pj38-v8h9-33p3
The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," which makes it easier for remote attackers to bypass authentication via a brute force attack, aka SAP Security Note 2216869.
BDU:2016-02054
Уязвимость системы управления базами данных SAP HANA, позволяющая нарушителю обойти процедуру аутентификации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-6144 The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," which makes it easier for remote attackers to bypass authentication via a brute force attack, aka SAP Security Note 2216869. | CVSS3: 8.1 | 1% Низкий | больше 9 лет назад |
| GHSA-pj38-v8h9-33p3 The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," which makes it easier for remote attackers to bypass authentication via a brute force attack, aka SAP Security Note 2216869. | CVSS3: 8.1 | 1% Низкий | больше 3 лет назад |
 | BDU:2016-02054 Уязвимость системы управления базами данных SAP HANA, позволяющая нарушителю обойти процедуру аутентификации | CVSS2: 4.3 | 1% Низкий | больше 9 лет назад |
Уязвимостей на страницу