CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-3746

Dell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of authentication attempts to the ACM API. An authenticated remote user may exploit this vulnerability to launch a brute-force authentication attack in order to gain access to the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 6.5

References

Products affected by CVE-2019-3746

Dell » Emc Idpa Dp4400 » Version: N/A

cpe:2.3:h:dell:emc_idpa_dp4400:-
Dell » Emc Idpa Dp5800 » Version: N/A

cpe:2.3:h:dell:emc_idpa_dp5800:-
Dell » Emc Idpa Dp8300 » Version: N/A

cpe:2.3:h:dell:emc_idpa_dp8300:-
Dell » Emc Idpa Dp8800 » Version: N/A

cpe:2.3:h:dell:emc_idpa_dp8800:-
Dell » Emc Integrated Data Protection Appliance Firmware » Version: 2.0

cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.0
Dell » Emc Integrated Data Protection Appliance Firmware » Version: 2.1

cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.1
Dell » Emc Integrated Data Protection Appliance Firmware » Version: 2.2

cpe:2.3:o:dell:emc_integrated_data_protection_appliance_firmware:2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-3746

Products

Pricing

Contact Us