Vulnerability Details CVE-2016-2944
IBM BigFix Remote Control before 9.1.3 does not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 5.0
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV89790
- http://www-01.ibm.com/support/docview.wss?uid=swg21991878
- http://www.securityfocus.com/bid/94623
- http://www-01.ibm.com/support/docview.wss?uid=swg1IV89790
- http://www-01.ibm.com/support/docview.wss?uid=swg21991878
- http://www.securityfocus.com/bid/94623
Products affected by CVE-2016-2944
-
cpe:2.3:a:ibm:bigfix_remote_control:9.1.2