CVE-2016-8964
published 2017-07-13CVE-2016-8964: IBM BigFix Inventory v9 9.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
IBM BigFix Inventory v9 9.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 118853.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | bigfix_inventory | — | — |
| ibm | bigfix_inventory | >= 9.0 < 9.2.8 | 9.2.8 |
| ibm | license_metric_tool | >= 9.0 < 9.2.8 | 9.2.8 |
| linux | linux_kernel | >= 0 < 4.4.0-57.78 | 4.4.0-57.78 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv5.5MEDIUM