CVE-2012-0400

Published: Mar 20, 2012Modified: Apr 29, 2026

7.9

Vector

AV:A/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 5.5 / Impact: 10.0

Source: NVD

Description

EMC RSA enVision 4.x before 4.1 Patch 4 does not properly restrict the number of failed authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.

Affected (5)

Products: Rsa: Envision

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Rsa Envision	Version 4.0 sp1
Rsa Envision	Version 4.0 sp2
Rsa Envision	Version 4.0 sp3
Rsa Envision	Version 4.0 sp4
Rsa Envision	Version 4.1

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (12)

http://archives.neohapsis.com/archives/bugtraq/2012-03/0081.html

Source: security_alert@emc.com

http://osvdb.org/80207

Source: security_alert@emc.com

http://secunia.com/advisories/48484

Source: security_alert@emc.com

http://www.securityfocus.com/bid/52557

Source: security_alert@emc.com

http://www.securitytracker.com/id?1026819

Source: security_alert@emc.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/74140

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2012-03/0081.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/80207

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/48484

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/52557

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1026819

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/74140

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.