CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-6649

EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by multiple command injection vulnerabilities where a malicious administrator with configuration privileges may bypass the user interface and escalate his privileges to root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.0%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 7.2

References

http://www.securityfocus.com/archive/1/540058/30/0/threaded
http://www.securityfocus.com/bid/95821
http://www.securitytracker.com/id/1037727
http://www.securityfocus.com/archive/1/540058/30/0/threaded
http://www.securityfocus.com/bid/95821
http://www.securitytracker.com/id/1037727

Products affected by CVE-2016-6649

Emc » Recoverpoint » Version: 4.4.1.0

cpe:2.3:a:emc:recoverpoint:4.4.1.0
Emc » Recoverpoint For Virtual Machines » Version: 4.0

cpe:2.3:a:emc:recoverpoint_for_virtual_machines:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6649

Products

Pricing

Contact Us