CVE-2016-6650
Summary
| CVE | CVE-2016-6650 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-03-21 16:59:00 UTC |
| Updated | 2017-07-12 01:29:00 UTC |
| Description | EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an SSL Stripping Vulnerability that may potentially be exploited by malicious users to compromise the affected system. |
Risk And Classification
Problem Types: CWE-200
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Emc | Recoverpoint | All | All | All | All |
| Application | Emc | Recoverpoint For Virtual Machines | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| EMC RecoverPoint Flaw Lets Remote Users Conduct SSL Stripping Attacks to Access and Modify Data - SecurityTracker | SECTRACK | www.securitytracker.com | |
| EMC RecoverPoint SSL Stripping CVE-2016-6650 Security Bypass Vulnerability | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| SecurityFocus | CONFIRM | www.securityfocus.com | Mitigation, Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.