Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before 3.2.1 does not properly restrict the number of authentication attempts by a user account, which makes it easier for local users to bypass intended access restrictions via a brute-force attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC RSA Data Protection Manager 身份验证绕过漏洞
Vulnerability Description
EMC RSA Data Protection Manager(DPM)是美国易安信(EMC)公司的一套数据加密、密钥管理软件。该软件通过加密、令牌化功能可以在捕获敏感数据时对数据进行保护,从而实现端到端数据保护。 EMC RSA Data Protection Manager Appliance 2.7.x和3.2.1之前的3.x版本中存在漏洞,该漏洞源于没有正确限制用户账户身份验证的尝试次数。本地攻击者利用该漏洞通过暴力破解攻击,绕过目地访问限制。
CVSS Information
N/A
Vulnerability Type
N/A