CVE-2012-4613

EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypass intended access restrictions via a brute-force attack.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
dellCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
VendorProductVersion
emcrsa_data_protection_manager_appliance
2.7.0
emcrsa_data_protection_manager_appliance
3.0
emcrsa_data_protection_manager_appliance
3.1
emcrsa_data_protection_manager_appliance
3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2012-11/0050.html
http://www.securityfocus.com/bid/56508
http://archives.neohapsis.com/archives/bugtraq/2012-11/0050.html
http://www.securityfocus.com/bid/56508