Lucene search
JpcertCVE-2013-0706HistoryFeb 22, 2013 - 12:55 a.m.
CVE-2013-0706
2013-02-2200:55:01
CWE-264
jpcert
web.nvd.nist.gov
46
cve-2013-0706
nec
universal raid utility
access control
remote attackers
arbitrary operations
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:P/A:C
AI Score
7
Confidence
Low
EPSS
0.005
Percentile
77.4%
NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID disk operations via unspecified vectors.
Affected configurations
Node
necuniversal_raid_utilityRange≤1.40rev_680
ORnecuniversal_raid_utilityRange≤2.5rev_2244
ORnecuniversal_raid_utilityRange≤2.31rev_1492
ORnecuniversal_raid_utilityMatch1.40
ORnecuniversal_raid_utilityMatch2.5
ORnecuniversal_raid_utilityMatch2.31
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nec | universal_raid_utility | * | cpe:2.3:a:nec:universal_raid_utility:*:rev_680:*:*:*:*:*:* |
| nec | universal_raid_utility | * | cpe:2.3:a:nec:universal_raid_utility:*:rev_2244:*:*:*:*:*:* |
| nec | universal_raid_utility | * | cpe:2.3:a:nec:universal_raid_utility:*:rev_1492:*:*:*:*:*:* |
| nec | universal_raid_utility | 1.40 | cpe:2.3:a:nec:universal_raid_utility:1.40:*:*:*:*:*:*:* |
| nec | universal_raid_utility | 2.5 | cpe:2.3:a:nec:universal_raid_utility:2.5:*:*:*:*:*:*:* |
| nec | universal_raid_utility | 2.31 | cpe:2.3:a:nec:universal_raid_utility:2.31:*:*:*:*:*:*:* |
Related
jvn
jvn
prion
prion
Design/Logic Flaw
2013-02-22 00:55:00
cvelist
cvelist
CVE-2013-0706
2013-02-22 00:00:00
nvd
nvd
CVE-2013-0706
2013-02-22 00:55:01
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:P/A:C
AI Score
7
Confidence
Low
EPSS
0.005
Percentile
77.4%
Related for CVE-2013-0706