Lucene search
PRIOn knowledge basePRION:CVE-2014-0646HistoryMay 01, 2014 - 5:29 p.m.
Design/Logic Flaw
2014-05-0117:29:00
PRIOn knowledge base
www.prio-n.com
1
6.7 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.4%
The runtime WS component in the server in EMC RSA Access Manager 6.1.3 before 6.1.3.39, 6.1.4 before 6.1.4.22, 6.2.0 before 6.2.0.11, and 6.2.1 before 6.2.1.03, when INFO logging is enabled, allows local users to discover cleartext passwords by reading log files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rsa_access_manager | eq | 6.2 sp1 | |
| rsa_access_manager | eq | 6.1 sp4 | |
| rsa_access_manager | eq | 6.1 sp3 | |
| rsa_access_manager | eq | 6.2 |
Related
securityvulns
securityvulns
RSA Access Manager information leakage
2014-05-01 00:00:00
nessus
nessus
EMC RSA Access Manager Information Disclosure (ESA-2014-029)
2014-05-08 00:00:00
cve
cve
CVE-2014-0646
2014-05-01 17:29:00
cvelist
cvelist
CVE-2014-0646
2014-05-01 17:00:00
6.7 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.4%
Related for PRION:CVE-2014-0646