Lucene search
DellCVE-2013-0935HistoryMar 28, 2013 - 3:55 p.m.
CVE-2013-0935
2013-03-2815:55:01
CWE-287
dell
web.nvd.nist.gov
27
emc
smarts
ncm
9.2
remote code execution
java rmi
cve-2013-0935
nvd
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
Low
EPSS
0.009
Percentile
82.7%
EMC Smarts Network Configuration Manager (NCM) before 9.2 does not require authentication for all Java RMI method calls, which allows remote attackers to execute arbitrary code via unspecified vectors.
Affected configurations
Node
emcsmarts_network_configuration_managerRange≤9.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| emc | smarts_network_configuration_manager | * | cpe:2.3:a:emc:smarts_network_configuration_manager:*:*:*:*:*:*:*:* |
Related
securityvulns
securityvulns
ESA-2013-016: EMC Smarts Network Configuration Manager
2013-04-01 00:00:00
EMC Smarts security vulnerabilities
2013-04-01 00:00:00
prion
prion
Authentication flaw
2013-03-28 15:55:00
Code injection
2013-03-28 15:55:00
nvd
nvd
CVE-2013-0935
2013-03-28 15:55:01
CVE-2013-2717
2013-03-28 15:55:09
cvelist
cvelist
CVE-2013-0935
2013-03-28 15:00:00
CVE-2013-2717
2013-03-28 15:00:00
cve
cve
CVE-2013-2717
2013-03-28 15:55:09
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
Low
EPSS
0.009
Percentile
82.7%
Related for CVE-2013-0935