Inadequate Account Lockout Setting in IBM BigFix Platform 9.2 and 9.5

Inadequate Account Lockout Setting in IBM BigFix Platform 9.2 and 9.5

CVE-2018-1475 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM BigFix Platform 9.2 and 9.5 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 140756.

Learn more about our Web Application Penetration Testing UK.