Lucene search

[email protected]CVE-2012-2010

HistoryMay 18, 2012 - 8:55 p.m.

CVE-2012-2010

2012-05-1820:55:06

CWE-264

[email protected]

web.nvd.nist.gov

hp openvms

acmelogin

privilege escalation

cve-2012-2010

nvd

6.7 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

The ACMELOGIN implementation in HP OpenVMS 8.3 and 8.4 on the Alpha platform, and 8.3, 8.3-1H1, and 8.4 on the Itanium platform, when the SYS$ACM system service is enabled, allows local users to gain privileges via unspecified vectors.

Affected configurations

NVD

Node

hpopenvmsMatch8.3

hpopenvmsMatch8.3alpha

hpopenvmsMatch8.3-1h1integrity_servers

hpopenvmsMatch8.4alpha

hpopenvmsMatch8.4itanium

CPENameOperatorVersion
hp:openvmshp openvmseq8.3
hp:openvmshp openvmseq8.3-1h1
hp:openvmshp openvmseq8.4

CPE	Name	Operator	Version
hp:openvms	hp openvms	eq	8.3
hp:openvms	hp openvms	eq	8.3-1h1
hp:openvms	hp openvms	eq	8.4

References

osvdb.org/82015

www.securityfocus.com/bid/53613

www.securitytracker.com/id?1027074

exchange.xforce.ibmcloud.com/vulnerabilities/75729

h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03333494

6.7 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2012-2010

cvelist1 nvd1 securityvulns2 prion1