Lucene search

DellCVE-2013-0943

HistoryJul 31, 2013 - 1:20 p.m.

CVE-2013-0943

2013-07-3113:20:24

CWE-200

dell

web.nvd.nist.gov

cve-2013-0943

emc networker

sensitive information disclosure

local privilege escalation

nsradmin

operating-system privileges

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

5.1%

JSON

EMC NetWorker 7.6.x and 8.x before 8.1 allows local users to obtain sensitive configuration information by leveraging operating-system privileges to perform decryption with nsradmin.

Affected configurations

Nvd

Node

emcnetworkerMatch7.6

emcnetworkerMatch7.6sp1

emcnetworkerMatch7.6sp2

emcnetworkerMatch7.6.0.2

emcnetworkerMatch7.6.0.3

emcnetworkerMatch7.6.0.4

emcnetworkerMatch7.6.0.5

emcnetworkerMatch7.6.0.6

emcnetworkerMatch7.6.0.7

emcnetworkerMatch7.6.0.8

emcnetworkerMatch7.6.0.9

emcnetworkerMatch7.6.1

emcnetworkerMatch7.6.1.1

emcnetworkerMatch7.6.1.2

emcnetworkerMatch7.6.1.3

emcnetworkerMatch7.6.1.4

emcnetworkerMatch7.6.1.5

emcnetworkerMatch7.6.3

emcnetworkerMatch7.6.4

emcnetworkerMatch7.6.4.1

emcnetworkerMatch7.6.4.2

emcnetworkerMatch7.6.4.3

emcnetworkerMatch7.6.4.4

emcnetworkerMatch7.6.4.5

emcnetworkerMatch7.6.5

emcnetworkerMatch7.6.5.2

emcnetworkerMatch7.6.5.3

emcnetworkerMatch7.6.5.4

emcnetworkerMatch7.6.5.5

emcnetworkerMatch7.6.5.6

Node

emcnetworkerMatch8.0

emcnetworkerMatch8.0.0.1

emcnetworkerMatch8.0.0.2

emcnetworkerMatch8.0.0.3

emcnetworkerMatch8.0.0.4

emcnetworkerMatch8.0.0.5

emcnetworkerMatch8.0.0.6

emcnetworkerMatch8.0.1.3

emcnetworkerMatch8.0.1.4

emcnetworkerMatch8.0.1.5

emcnetworkerMatch8.0.1.6

emcnetworkerMatch8.0.2.0

emcnetworkerMatch8.0.2.1

VendorProductVersionCPE
emcnetworker7.6cpe:2.3:a:emc:networker:7.6:*:*:*:*:*:*:*
emcnetworker7.6cpe:2.3:a:emc:networker:7.6:sp1:*:*:*:*:*:*
emcnetworker7.6cpe:2.3:a:emc:networker:7.6:sp2:*:*:*:*:*:*
emcnetworker7.6.0.2cpe:2.3:a:emc:networker:7.6.0.2:*:*:*:*:*:*:*
emcnetworker7.6.0.3cpe:2.3:a:emc:networker:7.6.0.3:*:*:*:*:*:*:*
emcnetworker7.6.0.4cpe:2.3:a:emc:networker:7.6.0.4:*:*:*:*:*:*:*
emcnetworker7.6.0.5cpe:2.3:a:emc:networker:7.6.0.5:*:*:*:*:*:*:*
emcnetworker7.6.0.6cpe:2.3:a:emc:networker:7.6.0.6:*:*:*:*:*:*:*
emcnetworker7.6.0.7cpe:2.3:a:emc:networker:7.6.0.7:*:*:*:*:*:*:*
emcnetworker7.6.0.8cpe:2.3:a:emc:networker:7.6.0.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
emc	networker	7.6	cpe:2.3:a:emc:networker:7.6:::::::*
emc	networker	7.6	cpe:2.3:a:emc:networker:7.6:sp1::::::
emc	networker	7.6	cpe:2.3:a:emc:networker:7.6:sp2::::::
emc	networker	7.6.0.2	cpe:2.3:a:emc:networker:7.6.0.2:::::::*
emc	networker	7.6.0.3	cpe:2.3:a:emc:networker:7.6.0.3:::::::*
emc	networker	7.6.0.4	cpe:2.3:a:emc:networker:7.6.0.4:::::::*
emc	networker	7.6.0.5	cpe:2.3:a:emc:networker:7.6.0.5:::::::*
emc	networker	7.6.0.6	cpe:2.3:a:emc:networker:7.6.0.6:::::::*
emc	networker	7.6.0.7	cpe:2.3:a:emc:networker:7.6.0.7:::::::*
emc	networker	7.6.0.8	cpe:2.3:a:emc:networker:7.6.0.8:::::::*

Rows per page:

1-10 of 431

References

archives.neohapsis.com/archives/bugtraq/2013-07/0193.html

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:S/C:C/I:N/A:N

AI Score

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2013-0943