Lucene search

[email protected]CVE-2006-2716

HistoryMay 31, 2006 - 10:02 p.m.

CVE-2006-2716

2006-05-3122:02:00

[email protected]

web.nvd.nist.gov

cve-2006-2716

secure elements

c5 evm

server security vulnerability

remote access

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Secure Elements Class 5 AVR server (aka C5 EVM) before 2.8.1 uses a hard-coded user ID and password, which allows remote attackers to gain access to the server.

Affected configurations

NVD

Node

secure_elementsc5_enterprise_vulnerability_management

CPENameOperatorVersion
secure_elements:c5_enterprise_vulnerability_managementsecure elements c5 enterprise vulnerability managementeq*

CPE	Name	Operator	Version
secure_elements:c5_enterprise_vulnerability_management	secure elements c5 enterprise vulnerability management	eq	*

References

secunia.com/advisories/20378

securitytracker.com/id?1016184

www.kb.cert.org/vuls/id/584329

www.kb.cert.org/vuls/id/WDON-6QAP4D

www.vupen.com/english/advisories/2006/2069

exchange.xforce.ibmcloud.com/vulnerabilities/26763

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.9 Medium

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2006-2716

nvd1 prion1 cvelist1