Lucene search

MitreCVE-2014-1673

HistoryJan 26, 2014 - 1:55 a.m.

CVE-2014-1673

2014-01-2601:55:26

mitre

web.nvd.nist.gov

check point

session authentication agent

cve-2014-1673

vulnerability

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.005

Percentile

75.7%

JSON

Check Point Session Authentication Agent allows remote attackers to obtain sensitive information (user credentials) via unspecified vectors.

Affected configurations

Nvd

Node

checkpointsession_authentication_agentMatch-

VendorProductVersionCPE
checkpointsession_authentication_agent-cpe:2.3:a:checkpoint:session_authentication_agent:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
checkpoint	session_authentication_agent	-	cpe:2.3:a:checkpoint:session_authentication_agent:-:::::::*

References

osvdb.org/102418

packetstormsecurity.com/files/124967

seclists.org/fulldisclosure/2014/Jan/185

exchange.xforce.ibmcloud.com/vulnerabilities/90746

supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk98263

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

0.005

Percentile

75.7%

JSON

Related for CVE-2014-1673