Overview
- Description
- EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an SSL Stripping Vulnerability that may potentially be exploited by malicious users to compromise the affected system.
- Source
- security_alert@emc.com
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 5.9
- Exploitability score
- 1.6
- Vector string
- CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 2.6
- Impact score
- 2.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:emc:recoverpoint:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D15E3B59-DBD6-4DD0-8BC0-351E4C45279C",
"versionEndIncluding": "4.4.1.1"
},
{
"criteria": "cpe:2.3:a:emc:recoverpoint_for_virtual_machines:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7BBED4E-1796-42C3-AD85-0F96BD8327D2",
"versionEndIncluding": "4.4.1.1"
}
],
"operator": "OR"
}
]
}
]