CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-0922

EMC ViPR SRM before 3.7.2 does not restrict the number of password-authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force guessing attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

http://seclists.org/bugtraq/2016/Sep/17
http://www.securityfocus.com/bid/92945
http://seclists.org/bugtraq/2016/Sep/17
http://www.securityfocus.com/bid/92945

Products affected by CVE-2016-0922

Emc » Vipr Srm » Version: 3.6.0

cpe:2.3:a:emc:vipr_srm:3.6.0
Emc » Vipr Srm » Version: 3.6.4

cpe:2.3:a:emc:vipr_srm:3.6.4
Emc » Vipr Srm » Version: 3.7.1

cpe:2.3:a:emc:vipr_srm:3.7.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-0922

Products

Pricing

Contact Us