CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
84.6%
EMC RSA enVision 4.x before 4.1 Patch 4 does not properly restrict the number of failed authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
Vendor | Product | Version | CPE |
---|---|---|---|
rsa | envision | 4.0 | cpe:2.3:a:rsa:envision:4.0:sp1:*:*:*:*:*:* |
rsa | envision | 4.0 | cpe:2.3:a:rsa:envision:4.0:sp2:*:*:*:*:*:* |
rsa | envision | 4.0 | cpe:2.3:a:rsa:envision:4.0:sp3:*:*:*:*:*:* |
rsa | envision | 4.0 | cpe:2.3:a:rsa:envision:4.0:sp4:*:*:*:*:*:* |
rsa | envision | 4.1 | cpe:2.3:a:rsa:envision:4.1:*:*:*:*:*:*:* |