Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-28248

CA eHealth Performance Manager through 6.3.2.12 is affected by Improper Restriction of Excessive Authentication Attempts. An attacker is able to perform an arbitrary number of /web/frames/ authentication attempts using different passwords, and eventually gain access to a targeted account, NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2021-28248
  • Broadcom » Ehealth » Version: 6.3
    cpe:2.3:a:broadcom:ehealth:6.3
  • Broadcom » Ehealth » Version: 6.3.1
    cpe:2.3:a:broadcom:ehealth:6.3.1
  • Broadcom » Ehealth » Version: 6.3.2
    cpe:2.3:a:broadcom:ehealth:6.3.2
  • Broadcom » Ehealth » Version: 6.3.2.01
    cpe:2.3:a:broadcom:ehealth:6.3.2.01
  • Broadcom » Ehealth » Version: 6.3.2.02
    cpe:2.3:a:broadcom:ehealth:6.3.2.02
  • Broadcom » Ehealth » Version: 6.3.2.03
    cpe:2.3:a:broadcom:ehealth:6.3.2.03
  • Broadcom » Ehealth » Version: 6.3.2.04
    cpe:2.3:a:broadcom:ehealth:6.3.2.04
  • Broadcom » Ehealth » Version: 6.3.2.05
    cpe:2.3:a:broadcom:ehealth:6.3.2.05
  • Broadcom » Ehealth » Version: 6.3.2.06
    cpe:2.3:a:broadcom:ehealth:6.3.2.06
  • Broadcom » Ehealth » Version: 6.3.2.07
    cpe:2.3:a:broadcom:ehealth:6.3.2.07
  • Broadcom » Ehealth » Version: 6.3.2.08
    cpe:2.3:a:broadcom:ehealth:6.3.2.08
  • Broadcom » Ehealth » Version: 6.3.2.09
    cpe:2.3:a:broadcom:ehealth:6.3.2.09
  • Broadcom » Ehealth » Version: 6.3.2.10
    cpe:2.3:a:broadcom:ehealth:6.3.2.10
  • Broadcom » Ehealth » Version: 6.3.2.11
    cpe:2.3:a:broadcom:ehealth:6.3.2.11
  • Broadcom » Ehealth » Version: 6.3.2.12
    cpe:2.3:a:broadcom:ehealth:6.3.2.12


Products
Pricing
Contact Us

Shodan ® - All rights reserved