Vulnerability Database

322,573

Total vulnerabilities in the database

CVE-2016-7456

VMware vSphere Data Protection (VDP) 5.5.x though 6.1.x has an SSH private key with a publicly known password, which makes it easier for remote attackers to obtain login access via an SSH session.

Published: Dec 29, 2016
Updated: Nov 9, 2025
CVE: CVE-2016-7456
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-255

Affected Software
References

Software	From	Fixed in
vmware / vsphere_data_protection	5.8.2	5.8.2.x
vmware / vsphere_data_protection	5.5.10	5.5.10.x
vmware / vsphere_data_protection	6.1.0	6.1.0.x
vmware / vsphere_data_protection	6.0.3	6.0.3.x
vmware / vsphere_data_protection	6.0.1	6.0.1.x
vmware / vsphere_data_protection	6.1.3	6.1.3.x
vmware / vsphere_data_protection	5.5.7	5.5.7.x
vmware / vsphere_data_protection	5.8.4	5.8.4.x
vmware / vsphere_data_protection	5.5.11	5.5.11.x
vmware / vsphere_data_protection	5.8.1	5.8.1.x
vmware / vsphere_data_protection	6.1.1	6.1.1.x
vmware / vsphere_data_protection	5.8.3	5.8.3.x
vmware / vsphere_data_protection	5.5.6	5.5.6.x
vmware / vsphere_data_protection	5.5.9	5.5.9.x
vmware / vsphere_data_protection	6.0.0	6.0.0.x
vmware / vsphere_data_protection	6.0.4	6.0.4.x
vmware / vsphere_data_protection	6.1.2	6.1.2.x
vmware / vsphere_data_protection	5.5.5	5.5.5.x
vmware / vsphere_data_protection	5.5.1	5.5.1.x
vmware / vsphere_data_protection	5.5.8	5.5.8.x
vmware / vsphere_data_protection	6.0.2	6.0.2.x
vmware / vsphere_data_protection	5.8.0	5.8.0.x

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo