Lucene search

[email protected]CVE-2015-0546

HistoryJun 17, 2015 - 10:59 a.m.

CVE-2015-0546

2015-06-1710:59:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2015-0546

emc

uim

ldap

authentication

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.1%

JSON

EMC Unified Infrastructure Manager/Provisioning (UIM/P) 4.1 allows remote attackers to bypass LDAP authentication by providing a valid account name.

CPENameOperatorVersion
emc:unified_infrastructure_manager\/provisioningemc unified infrastructure manager\/provisioningeq4.1

CPE	Name	Operator	Version
emc:unified_infrastructure_manager\/provisioning	emc unified infrastructure manager\/provisioning	eq	4.1

References

seclists.org/bugtraq/2015/Jun/87

www.securitytracker.com/id/1032589

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.1%

JSON

Related for CVE-2015-0546

securityvulns2 prion1 cvelist1