Lucene search
PRIOn knowledge basePRION:CVE-2013-4404HistoryDec 23, 2013 - 10:55 p.m.
Design/Logic Flaw
2013-12-2322:55:00
PRIOn knowledge base
www.prio-n.com
5.9 Medium
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
58.4%
cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| enterprise_mrg | eq | 2.4 |
Related
cve
cve
CVE-2013-4404
2013-12-23 22:55:00
CVE-2013-4403
2013-12-19 22:55:00
veracode
veracode
Authorization Bypass
2019-01-15 08:53:51
prion
prion
Design/Logic Flaw
2013-12-19 22:55:00
redhat
redhat
(RHSA-2013:1851) Moderate: Red Hat Enterprise MRG Grid 2.4 security update
2013-12-17 00:00:00
(RHSA-2013:1852) Moderate: Red Hat Enterprise MRG Grid 2.4 security update
2013-12-17 00:00:00
nessus
nessus
RHEL 5 : MRG (RHSA-2013:1851)
2014-07-22 00:00:00
RHEL 6 : MRG (RHSA-2013:1852)
2014-07-22 00:00:00
5.9 Medium
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
58.4%
Related for PRION:CVE-2013-4404