Unrated severityNVD Advisory· Published Aug 22, 2012· Updated Apr 29, 2026

CVE-2012-4588

Description

McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.

Affected products

McAfee/Enterprise Mobility Manager
cpe:2.3:a:mcafee:enterprise_mobility_manager:*:*:*:*:*:*:*:*
Range: <=4.7
McAfee/Enterprise Mobility Manager Agent
cpe:2.3:a:mcafee:enterprise_mobility_manager_agent:*:*:*:*:*:*:*:*
Range: <=10.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000