Lucene search

[email protected]NVD:CVE-2012-4362

HistoryAug 20, 2012 - 10:55 p.m.

CVE-2012-4362

2012-08-2022:55:01

CWE-255

[email protected]

web.nvd.nist.gov

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.8%

JSON

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.

Affected configurations

NVD

Node

hpsan\/iqMatch9.5

AND

hpvirtual_san_applianceMatch-

References

www.exploit-db.com/exploits/18893/

www.exploit-db.com/exploits/18901/

www.kb.cert.org/vuls/id/441363

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.8%

JSON

Related for NVD:CVE-2012-4362

cve1 prion1 cvelist1 openvas1