Inadequate Account Lockout Setting in IBM Security Privileged Identity Manager Virtual Appliance v2.0.2 Allows Remote Brute Force Attacks

Inadequate Account Lockout Setting in IBM Security Privileged Identity Manager Virtual Appliance v2.0.2 Allows Remote Brute Force Attacks

CVE-2016-5964 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.

Learn more about our Web Application Penetration Testing UK.