Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-3285
emc networker
nmc
authentication
cleartext password
security vulnerability
cve-2013-3285
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.6%
The NetWorker Management Console (NMC) in EMC NetWorker 8.0.x before 8.0.2.3, when using Active Directory/LDAP for authentication, allows remote authenticated users to discover cleartext administrator passwords via (1) unspecified NMC audit reports or (2) requests to RAP resources.
Affected configurations
Node
emcnetworkerMatch8.0
ORemcnetworkerMatch8.0.0.1
ORemcnetworkerMatch8.0.0.2
ORemcnetworkerMatch8.0.0.3
ORemcnetworkerMatch8.0.0.4
ORemcnetworkerMatch8.0.0.5
ORemcnetworkerMatch8.0.0.6
ORemcnetworkerMatch8.0.1.3
ORemcnetworkerMatch8.0.1.4
ORemcnetworkerMatch8.0.1.5
ORemcnetworkerMatch8.0.1.6
ORemcnetworkerMatch8.0.2.0
ORemcnetworkerMatch8.0.2.1
ORemcnetworkerMatch8.0.2.2
Related
nvd
nvd
CVE-2013-3285
2013-11-02 19:55:04
securityvulns
securityvulns
EMC NetWorker information leakage
2014-01-08 00:00:00
ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability
2014-01-08 00:00:00
prion
prion
Authentication flaw
2013-11-02 19:55:00
nessus
nessus
EMC NetWorker 8.x < 8.0.2.3 Management Console Information Disclosure
2013-11-01 00:00:00
cvelist
cvelist
CVE-2013-3285
2022-10-03 16:14:46
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.6%
Related for CVE-2013-3285