Lucene search

[email protected]NVD:CVE-2013-4134

HistoryNov 05, 2013 - 9:55 p.m.

CVE-2013-4134

2013-11-0521:55:08

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.002

Percentile

59.3%

JSON

OpenAFS before 1.4.15, 1.6.x before 1.6.5, and 1.7.x before 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote attackers to obtain the service key.

Affected configurations

Nvd

Node

openafsopenafsRange≤1.4.14

openafsopenafsMatch1.0

openafsopenafsMatch1.0.1

openafsopenafsMatch1.0.2

openafsopenafsMatch1.0.3

openafsopenafsMatch1.0.4

openafsopenafsMatch1.0.4a

openafsopenafsMatch1.1

openafsopenafsMatch1.1.0

openafsopenafsMatch1.1.1

openafsopenafsMatch1.1.1a

openafsopenafsMatch1.2

openafsopenafsMatch1.2.1

openafsopenafsMatch1.2.2

openafsopenafsMatch1.2.2a

openafsopenafsMatch1.2.2b

openafsopenafsMatch1.2.3

openafsopenafsMatch1.2.4

openafsopenafsMatch1.2.5

openafsopenafsMatch1.2.6

openafsopenafsMatch1.2.7

openafsopenafsMatch1.2.8

openafsopenafsMatch1.2.9

openafsopenafsMatch1.2.10

openafsopenafsMatch1.2.11

openafsopenafsMatch1.2.13

openafsopenafsMatch1.3

openafsopenafsMatch1.3.1

openafsopenafsMatch1.3.2

openafsopenafsMatch1.3.5

openafsopenafsMatch1.3.70

openafsopenafsMatch1.3.74

openafsopenafsMatch1.3.77

openafsopenafsMatch1.3.81

openafsopenafsMatch1.4

openafsopenafsMatch1.4.0

openafsopenafsMatch1.4.1

openafsopenafsMatch1.4.2

openafsopenafsMatch1.4.3

openafsopenafsMatch1.4.4

openafsopenafsMatch1.4.5

openafsopenafsMatch1.4.6

openafsopenafsMatch1.4.7

openafsopenafsMatch1.4.7_pre1

openafsopenafsMatch1.4.7_pre2

openafsopenafsMatch1.4.7_pre3

openafsopenafsMatch1.4.7_pre4

openafsopenafsMatch1.4.7_pre5

openafsopenafsMatch1.4.8

openafsopenafsMatch1.4.8_pre1

openafsopenafsMatch1.4.8_pre2

openafsopenafsMatch1.4.8_pre3

openafsopenafsMatch1.4.12

openafsopenafsMatch1.6.0

openafsopenafsMatch1.6.1

openafsopenafsMatch1.6.2

openafsopenafsMatch1.6.2.1

openafsopenafsMatch1.6.3

openafsopenafsMatch1.6.4

openafsopenafsMatch1.7.1

openafsopenafsMatch1.7.2

openafsopenafsMatch1.7.3

openafsopenafsMatch1.7.4

openafsopenafsMatch1.7.8

openafsopenafsMatch1.7.10

openafsopenafsMatch1.7.11

openafsopenafsMatch1.7.12

openafsopenafsMatch1.7.13

openafsopenafsMatch1.7.14

openafsopenafsMatch1.7.15

openafsopenafsMatch1.7.16

openafsopenafsMatch1.7.17

openafsopenafsMatch1.7.18

openafsopenafsMatch1.7.19

openafsopenafsMatch1.7.20

openafsopenafsMatch1.7.21

openafsopenafsMatch1.7.22

openafsopenafsMatch1.7.23

openafsopenafsMatch1.7.24

openafsopenafsMatch1.7.25

Node

debiandebian_linuxMatch7.0

VendorProductVersionCPE
openafsopenafs*cpe:2.3:a:openafs:openafs:*:*:*:*:*:*:*:*
openafsopenafs1.0cpe:2.3:a:openafs:openafs:1.0:*:*:*:*:*:*:*
openafsopenafs1.0.1cpe:2.3:a:openafs:openafs:1.0.1:*:*:*:*:*:*:*
openafsopenafs1.0.2cpe:2.3:a:openafs:openafs:1.0.2:*:*:*:*:*:*:*
openafsopenafs1.0.3cpe:2.3:a:openafs:openafs:1.0.3:*:*:*:*:*:*:*
openafsopenafs1.0.4cpe:2.3:a:openafs:openafs:1.0.4:*:*:*:*:*:*:*
openafsopenafs1.0.4acpe:2.3:a:openafs:openafs:1.0.4a:*:*:*:*:*:*:*
openafsopenafs1.1cpe:2.3:a:openafs:openafs:1.1:*:*:*:*:*:*:*
openafsopenafs1.1.0cpe:2.3:a:openafs:openafs:1.1.0:*:*:*:*:*:*:*
openafsopenafs1.1.1cpe:2.3:a:openafs:openafs:1.1.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
openafs	openafs	*	cpe:2.3:a:openafs:openafs::::::::
openafs	openafs	1.0	cpe:2.3:a:openafs:openafs:1.0:::::::*
openafs	openafs	1.0.1	cpe:2.3:a:openafs:openafs:1.0.1:::::::*
openafs	openafs	1.0.2	cpe:2.3:a:openafs:openafs:1.0.2:::::::*
openafs	openafs	1.0.3	cpe:2.3:a:openafs:openafs:1.0.3:::::::*
openafs	openafs	1.0.4	cpe:2.3:a:openafs:openafs:1.0.4:::::::*
openafs	openafs	1.0.4a	cpe:2.3:a:openafs:openafs:1.0.4a:::::::*
openafs	openafs	1.1	cpe:2.3:a:openafs:openafs:1.1:::::::*
openafs	openafs	1.1.0	cpe:2.3:a:openafs:openafs:1.1.0:::::::*
openafs	openafs	1.1.1	cpe:2.3:a:openafs:openafs:1.1.1:::::::*