Lucene search
RedhatCVE-2013-4293HistoryOct 24, 2013 - 3:48 a.m.
CVE-2013-4293
2013-10-2403:48:46
CWE-310
redhat
web.nvd.nist.gov
30
cve-2013-4293
red hat
jboss operations network
jon 3.1.2
plaintext passwords
sensitive information
local users
log files
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0
Percentile
5.1%
The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.
Affected configurations
Node
redhatjboss_operations_networkMatch3.1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | jboss_operations_network | 3.1.2 | cpe:2.3:a:redhat:jboss_operations_network:3.1.2:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2013-10-24 03:48:00
nvd
nvd
CVE-2013-4293
2013-10-24 03:48:46
cvelist
cvelist
CVE-2013-4293
2013-10-24 01:00:00
redhat
redhat
(RHSA-2013:1448) Important: Red Hat JBoss Operations Network 3.1.2 update
2013-10-21 17:22:10
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
5.9
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2013-4293