CVE-2016-6650

EPSS 1.15%
Published 21.03.2017 16:59:00
Last modified 20.04.2025 01:37:25
Source security_alert@emc.com
Teams watchlist Login
Open Login

EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an SSL Stripping Vulnerability that may potentially be exploited by malicious users to compromise the affected system.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Emc ≫ Recoverpoint Version <= 4.4.1.1

Emc ≫ Recoverpoint For Virtual Machines Version <= 4.4.1.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.15%	0.765

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	1.6	5.9	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www.securityfocus.com/archive/1/540303/30/0/threaded

Third Party Advisory

VDB Entry

Mitigation

http://www.securityfocus.com/bid/96156

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1038066

https://nvd.nist.gov/vuln/detail/CVE-2016-6650

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-6650

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-6650

EUVD