CVE-2016-6650: Infoleak
First published: Tue Mar 21 2017(Updated: )
EMC RecoverPoint versions prior to 5.0 and EMC RecoverPoint for Virtual Machines versions prior to 5.0 have an SSL Stripping Vulnerability that may potentially be exploited by malicious users to compromise the affected system.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| EMC RecoverPoint Appliance | <=4.4.1.1 | |
| EMC RecoverPoint | <=4.4.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-6650?
CVE-2016-6650 is classified as a medium severity vulnerability due to its potential for exploitation by malicious users.
How do I fix CVE-2016-6650?
To mitigate CVE-2016-6650, upgrade EMC RecoverPoint and EMC RecoverPoint for Virtual Machines to version 5.0 or later.
What is the nature of CVE-2016-6650?
CVE-2016-6650 involves an SSL stripping vulnerability that allows attackers to compromise the affected system.
Which versions of EMC RecoverPoint are affected by CVE-2016-6650?
CVE-2016-6650 affects EMC RecoverPoint versions prior to 5.0 and also affects RecoverPoint for Virtual Machines versions prior to 5.0.
Who should be concerned about CVE-2016-6650?
Organizations using EMC RecoverPoint or RecoverPoint for Virtual Machines below version 5.0 should prioritize addressing CVE-2016-6650.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/author
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/emc
- canonical/emc recoverpoint appliance
- version/emc recoverpoint appliance/4.4.1.1
- canonical/emc recoverpoint
- version/emc recoverpoint/4.4.1.1