Symantec Reporter 9.5 prior to 9.5.4.1 and 10.1 prior to 10.1.5.5 does not restrict excessive authentication attempts for management interface users. A remote attacker can use brute force search to guess a user password and gain access to Reporter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: symantec

Published: 2018-01-23T20:00:00Z

Updated: 2024-09-16T19:15:56.968Z

Reserved: 2017-10-17T00:00:00

Link: CVE-2017-15531

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-01-23T20:29:00.283

Modified: 2018-05-04T01:29:04.537

Link: CVE-2017-15531

cve-icon Redhat

No data.