Lucene search

[email protected]CVE-2017-4983

HistoryMay 04, 2017 - 2:29 p.m.

CVE-2017-4983

2017-05-0414:29:00

[email protected]

web.nvd.nist.gov

emc

data domain

5.2

5.7

5.7.3.0

6.0

6.0.1.0

privilege escalation

vulnerability

nvd

cve-2017-4983

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

21.0%

JSON

EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0 is affected by a privilege escalation vulnerability that may potentially be exploited by attackers to compromise the affected system.

Affected configurations

NVD

Node

dellemc_data_domain_osMatch5.2

dellemc_data_domain_osMatch5.4

dellemc_data_domain_osMatch5.5

dellemc_data_domain_osMatch5.6

dellemc_data_domain_osMatch5.7

dellemc_data_domain_osMatch6.0

CPENameOperatorVersion
dell:emc_data_domain_osdell emc data domain oseq5.2
dell:emc_data_domain_osdell emc data domain oseq5.4
dell:emc_data_domain_osdell emc data domain oseq5.5
dell:emc_data_domain_osdell emc data domain oseq5.6
dell:emc_data_domain_osdell emc data domain oseq5.7
dell:emc_data_domain_osdell emc data domain oseq6.0

CPE	Name	Operator	Version
dell:emc_data_domain_os	dell emc data domain os	eq	5.2
dell:emc_data_domain_os	dell emc data domain os	eq	5.4
dell:emc_data_domain_os	dell emc data domain os	eq	5.5
dell:emc_data_domain_os	dell emc data domain os	eq	5.6
dell:emc_data_domain_os	dell emc data domain os	eq	5.7
dell:emc_data_domain_os	dell emc data domain os	eq	6.0

CNA Affected

[
  {
    "product": "EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0"
      }
    ]
  }
]

References

www.securityfocus.com/archive/1/540517/30/0/threaded

www.securityfocus.com/bid/98047

www.securitytracker.com/id/1038404

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

21.0%

JSON

Related for CVE-2017-4983

nvd1 prion1 openvas1 cvelist1