Lucene search
K
VeraxsystemsNetwork Management System

4 matches found

CVE
CVE
added 2020/01/30 1:25 p.m.72 views

CVE-2013-1352

CVE-2013-1352 affects Verax NMS prior to 2.1.0, where an encryption key is hardcoded in a JAR archive. This creates a potential confidentiality risk if the key is exposed; CVSS v3.1 indicates a HIGH impact on confidentiality (network access, no privileges required). The provided connected documen...

7.5CVSS7.6AI score0.01307EPSS
CVE
CVE
added 2020/01/30 1:20 p.m.53 views

CVE-2013-1351

CVE-2013-1351 affects all Verax NMS versions prior to 2.1.0. The vulnerability arises from a client-side RSA-based password encryption in the login flow (clientMain.swf) where private/public keys are hardcoded, allowing an attacker to capture and replay the encrypted password against the service....

5.9CVSS6.6AI score0.02008EPSS
CVE
CVE
added 2020/01/30 1:15 p.m.47 views

CVE-2013-1350

CVE-2013-1350 affects Verax NMS prior to 2.1.0. The vulnerability arises from authentication/authorization flaws that allow remote attackers to add/delete users, change passwords, and access sensitive data via unauthenticated service calls (e.g., userService/getAllUsers). Impact is authenticated ...

9.1CVSS9.4AI score0.01514EPSS
CVE
CVE
added 2020/01/30 1:31 p.m.46 views

CVE-2013-1631

CVE-2013-1631 affects Verax NMS prior to 2.1.0. According to the provided documents, the vulnerability causes leakage of connection details when any user executes a Repair Table action. The Red Hat and NVD records reflect this description and assign a moderate impact (CVSS v2 base score 5.0, CVSS...

5.3CVSS6AI score0.01315EPSS