Lucene search

MitreCVE-2011-4143

HistoryJan 27, 2012 - 12:55 a.m.

CVE-2011-4143

2012-01-2700:55:00

CWE-200

mitre

web.nvd.nist.gov

emc

rsa

envision

security vulnerability

remote attackers

sensitive information

environment variables

web system

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.003

Percentile

69.5%

JSON

EMC RSA enVision 4.0 before SP4 P5 and 4.1 before P3 allows remote attackers to obtain sensitive information about environment variables in the web system via unspecified vectors.

Affected configurations

Nvd

Node

rsaenvisionMatch4.0sp1

rsaenvisionMatch4.0sp2

rsaenvisionMatch4.0sp3

rsaenvisionMatch4.0sp4

rsaenvisionMatch4.1

VendorProductVersionCPE
rsaenvision4.0cpe:2.3:a:rsa:envision:4.0:sp1:*:*:*:*:*:*
rsaenvision4.0cpe:2.3:a:rsa:envision:4.0:sp2:*:*:*:*:*:*
rsaenvision4.0cpe:2.3:a:rsa:envision:4.0:sp3:*:*:*:*:*:*
rsaenvision4.0cpe:2.3:a:rsa:envision:4.0:sp4:*:*:*:*:*:*
rsaenvision4.1cpe:2.3:a:rsa:envision:4.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
rsa	envision	4.0	cpe:2.3:a:rsa:envision:4.0:sp1::::::
rsa	envision	4.0	cpe:2.3:a:rsa:envision:4.0:sp2::::::
rsa	envision	4.0	cpe:2.3:a:rsa:envision:4.0:sp3::::::
rsa	envision	4.0	cpe:2.3:a:rsa:envision:4.0:sp4::::::
rsa	envision	4.1	cpe:2.3:a:rsa:envision:4.1:::::::*

References

www.securityfocus.com/archive/1/521375

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.003

Percentile

69.5%

JSON

Related for CVE-2011-4143