Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveDellCVE-2013-3285
HistoryNov 02, 2013 - 7:55 p.m.

CVE-2013-3285

2013-11-0219:55:04
CWE-310
dell
web.nvd.nist.gov
25
emc networker
nmc
authentication
cleartext password
security vulnerability
cve-2013-3285

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

49.4%

JSON

The NetWorker Management Console (NMC) in EMC NetWorker 8.0.x before 8.0.2.3, when using Active Directory/LDAP for authentication, allows remote authenticated users to discover cleartext administrator passwords via (1) unspecified NMC audit reports or (2) requests to RAP resources.

Affected configurations

Nvd
Node
emcnetworkerMatch8.0
OR
emcnetworkerMatch8.0.0.1
OR
emcnetworkerMatch8.0.0.2
OR
emcnetworkerMatch8.0.0.3
OR
emcnetworkerMatch8.0.0.4
OR
emcnetworkerMatch8.0.0.5
OR
emcnetworkerMatch8.0.0.6
OR
emcnetworkerMatch8.0.1.3
OR
emcnetworkerMatch8.0.1.4
OR
emcnetworkerMatch8.0.1.5
OR
emcnetworkerMatch8.0.1.6
OR
emcnetworkerMatch8.0.2.0
OR
emcnetworkerMatch8.0.2.1
OR
emcnetworkerMatch8.0.2.2
VendorProductVersionCPE
emcnetworker8.0cpe:2.3:a:emc:networker:8.0:*:*:*:*:*:*:*
emcnetworker8.0.0.1cpe:2.3:a:emc:networker:8.0.0.1:*:*:*:*:*:*:*
emcnetworker8.0.0.2cpe:2.3:a:emc:networker:8.0.0.2:*:*:*:*:*:*:*
emcnetworker8.0.0.3cpe:2.3:a:emc:networker:8.0.0.3:*:*:*:*:*:*:*
emcnetworker8.0.0.4cpe:2.3:a:emc:networker:8.0.0.4:*:*:*:*:*:*:*
emcnetworker8.0.0.5cpe:2.3:a:emc:networker:8.0.0.5:*:*:*:*:*:*:*
emcnetworker8.0.0.6cpe:2.3:a:emc:networker:8.0.0.6:*:*:*:*:*:*:*
emcnetworker8.0.1.3cpe:2.3:a:emc:networker:8.0.1.3:*:*:*:*:*:*:*
emcnetworker8.0.1.4cpe:2.3:a:emc:networker:8.0.1.4:*:*:*:*:*:*:*
emcnetworker8.0.1.5cpe:2.3:a:emc:networker:8.0.1.5:*:*:*:*:*:*:*
Rows per page:
1-10 of 141

Related

nvd 1
nessus 1
prion 1
securityvulns 2
cvelist 1
nvd
nvd
CVE-2013-3285
2013-11-02 19:55:04
nessus
nessus
EMC NetWorker 8.x < 8.0.2.3 Management Console Information Disclosure
2013-11-01 00:00:00
prion
prion
Authentication flaw
2013-11-02 19:55:00
securityvulns
securityvulns
ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability
2014-01-08 00:00:00
EMC NetWorker information leakage
2014-01-08 00:00:00
cvelist
cvelist
CVE-2013-3285
2013-11-02 19:00:00

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

49.4%

JSON
Related for CVE-2013-3285
nvd1nessus1prion1securityvulns2cvelist1