Lucene search

[email protected]CVE-2012-0402

HistoryMar 20, 2012 - 3:55 p.m.

CVE-2012-0402

2012-03-2015:55:00

CWE-255

[email protected]

web.nvd.nist.gov

emc

rsa

envision

cve-2012-0402

hardcoded credentials

remote access

security vulnerability

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.1%

JSON

EMC RSA enVision 4.x before 4.1 Patch 4 uses unspecified hardcoded credentials, which makes it easier for remote attackers to obtain access via unknown vectors.

CPENameOperatorVersion
rsa:envisionrsa envisioneq4.0
rsa:envisionrsa envisioneq4.1

CPE	Name	Operator	Version
rsa:envision	rsa envision	eq	4.0
rsa:envision	rsa envision	eq	4.1

References

archives.neohapsis.com/archives/bugtraq/2012-03/0081.html

secunia.com/advisories/48484

www.securityfocus.com/bid/52557

www.securitytracker.com/id?1026819

exchange.xforce.ibmcloud.com/vulnerabilities/74138

6.8 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.011 Low

EPSS

Percentile

84.1%

JSON

Related for CVE-2012-0402

prion1 cvelist1 securityvulns2