Lucene search
HistoryOct 03, 2022 - 4:22 p.m.
CVE-2005-2076
hp
vcrm
physical access
vulnerability
security
nvd
cve-2005-2076
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.7%
HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the “@” character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen.
Affected configurations
Node
hpversion_control_repository_managerMatch1.0.1288.1
ORhpversion_control_repository_managerMatch1.0.2241.0
ORhpversion_control_repository_managerMatch1.0.2289.0
ORhpversion_control_repository_managerMatch1.0.2345.0
ORhpversion_control_repository_managerMatch1.0.3085.0
ORhpversion_control_repository_managerMatch1.0.3086.0
ORhpversion_control_repository_managerMatch2.0.0.50
ORhpversion_control_repository_managerMatch2.0.1.30
ORhpversion_control_repository_managerMatch2.1.1.710
ORhpversion_control_repository_managerMatch2.1.1.720
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.7%
Related for CVE-2005-2076