Vulnerability Details CVE-2012-4588
McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.2%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2012-4588
-
cpe:2.3:a:mcafee:enterprise_mobility_manager:*
-
cpe:2.3:a:mcafee:enterprise_mobility_manager_agent:*