Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2013-4217
HistoryAug 25, 2013 - 3:27 a.m.

CVE-2013-4217

2013-08-2503:27:32
CWE-310
redhat
web.nvd.nist.gov
19
cve-2013-4217
osal_crypt_setencryptedpassword
infrastack
osdependent
linux
wimax
intel
network service
wireless wimax connection 2400
sensitive information
log file
local users
password security

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.1

Confidence

High

EPSS

0

Percentile

5.1%

JSON

The OSAL_Crypt_SetEncryptedPassword function in InfraStack/OSDependent/Linux/OSAL/Services/wimax_osal_crypt_services.c in the OSAL crypt module in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400 devices logs a cleartext password during certain attempts to set a password, which allows local users to obtain sensitive information by reading a log file.

Affected configurations

Nvd
Node
intelwimax_network_serviceRange1.5.2
OR
intelwimax_network_serviceMatch1.5.0
VendorProductVersionCPE
intelwimax_network_service*cpe:2.3:a:intel:wimax_network_service:*:*:*:*:*:*:*:*
intelwimax_network_service1.5.0cpe:2.3:a:intel:wimax_network_service:1.5.0:*:*:*:*:*:*:*

Related

cvelist 1
nvd 1
prion 1
cvelist
cvelist
CVE-2013-4217
2013-08-25 01:00:00
nvd
nvd
CVE-2013-4217
2013-08-25 03:27:32
prion
prion
Design/Logic Flaw
2013-08-25 03:27:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.1

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2013-4217
cvelist1nvd1prion1