CVE-2016-0912

Name of the Vulnerable Software and Affected Versions EMC Data Domain OS versions 5.4 through 5.7 before 5.7.2.0

Description The issue allows remote authenticated users to bypass intended password-change restrictions. This can be achieved by leveraging access to a different account with the same role as a target account or an account's session at an unattended workstation.

Recommendations For EMC Data Domain OS versions 5.4 through 5.7 before 5.7.2.0, update to version 5.7.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to accounts and ensuring workstations are properly secured to minimize the risk of exploitation.