4 matches found
CVE-2013-1352
CVE-2013-1352 affects Verax NMS prior to 2.1.0, where an encryption key is hardcoded in a JAR archive. This creates a potential confidentiality risk if the key is exposed; CVSS v3.1 indicates a HIGH impact on confidentiality (network access, no privileges required). The provided connected documen...
CVE-2013-1351
CVE-2013-1351 affects all Verax NMS versions prior to 2.1.0. The vulnerability arises from a client-side RSA-based password encryption in the login flow (clientMain.swf) where private/public keys are hardcoded, allowing an attacker to capture and replay the encrypted password against the service....
CVE-2013-1350
CVE-2013-1350 affects Verax NMS prior to 2.1.0. The vulnerability arises from authentication/authorization flaws that allow remote attackers to add/delete users, change passwords, and access sensitive data via unauthenticated service calls (e.g., userService/getAllUsers). Impact is authenticated ...
CVE-2013-1631
CVE-2013-1631 affects Verax NMS prior to 2.1.0. According to the provided documents, the vulnerability causes leakage of connection details when any user executes a Repair Table action. The Red Hat and NVD records reflect this description and assign a moderate impact (CVSS v2 base score 5.0, CVSS...