Lucene search
PRIOn knowledge basePRION:CVE-2014-0633HistoryApr 01, 2014 - 6:28 a.m.
Design/Logic Flaw
2014-04-0106:28:00
PRIOn knowledge base
www.prio-n.com
4
8.3 High
AI Score
Confidence
Low
7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
60.0%
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an unattended workstation.
| CPE | Name | Operator | Version |
|---|---|---|---|
| vplex_geosynchrony | eq | 5.0 | |
| vplex_geosynchrony | eq | 5.1 | |
| vplex_geosynchrony | eq | 5.2 | |
| vplex_geosynchrony | eq | 4.0 | |
| vplex_geosynchrony | eq | 5.2.1 |
Related
seebug
seebug
EMC VPLEX GeoSynchrony会话超时验证安全限制绕过漏洞
2014-04-02 00:00:00
cve
cve
CVE-2014-0633
2014-04-01 06:28:00
securityvulns
securityvulns
EMC VPLEX multiple security vulnerabilities
2014-03-31 00:00:00
ESA-2014-016: EMC VPLEX Multiple Vulnerabilities
2014-03-31 00:00:00
8.3 High
AI Score
Confidence
Low
7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
60.0%
Related for PRION:CVE-2014-0633