Lucene search

[email protected]NVD:CVE-2011-3997

HistoryNov 09, 2011 - 8:55 p.m.

CVE-2011-3997

2011-11-0920:55:01

CWE-287

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.005

Percentile

77.5%

JSON

Opengear console servers with firmware before 2.2.1 allow remote attackers to bypass authentication, and modify settings or access connected equipment, via unspecified vectors.

Affected configurations

Nvd

Node

opengearopengear_console_server_firmwareRange≤2.1.0u7

opengearopengear_console_server_firmwareMatch2.0.4

opengearopengear_console_server_firmwareMatch2.0.4u1

opengearopengear_console_server_firmwareMatch2.0.6

opengearopengear_console_server_firmwareMatch2.0.8

opengearopengear_console_server_firmwareMatch2.0.9

opengearopengear_console_server_firmwareMatch2.1.0

opengearopengear_console_server_firmwareMatch2.1.0u1

AND

opengearacm5000_console_server

opengearcm4000_console_server

opengearim4004-5_console_server

opengearim4200_console_server

opengearimg4000_console_server

opengearkcs6000_rackside_console_server

VendorProductVersionCPE
opengearopengear_console_server_firmware*cpe:2.3:a:opengear:opengear_console_server_firmware:*:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.0.4cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.4:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.0.4u1cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.4u1:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.0.6cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.6:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.0.8cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.8:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.0.9cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.9:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.1.0cpe:2.3:a:opengear:opengear_console_server_firmware:2.1.0:*:*:*:*:*:*:*
opengearopengear_console_server_firmware2.1.0u1cpe:2.3:a:opengear:opengear_console_server_firmware:2.1.0u1:*:*:*:*:*:*:*
opengearacm5000_console_server*cpe:2.3:h:opengear:acm5000_console_server:*:*:*:*:*:*:*:*
opengearcm4000_console_server*cpe:2.3:h:opengear:cm4000_console_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
opengear	opengear_console_server_firmware	*	cpe:2.3:a:opengear:opengear_console_server_firmware::::::::
opengear	opengear_console_server_firmware	2.0.4	cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.4:::::::*
opengear	opengear_console_server_firmware	2.0.4u1	cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.4u1:::::::*
opengear	opengear_console_server_firmware	2.0.6	cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.6:::::::*
opengear	opengear_console_server_firmware	2.0.8	cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.8:::::::*
opengear	opengear_console_server_firmware	2.0.9	cpe:2.3:a:opengear:opengear_console_server_firmware:2.0.9:::::::*
opengear	opengear_console_server_firmware	2.1.0	cpe:2.3:a:opengear:opengear_console_server_firmware:2.1.0:::::::*
opengear	opengear_console_server_firmware	2.1.0u1	cpe:2.3:a:opengear:opengear_console_server_firmware:2.1.0u1:::::::*
opengear	acm5000_console_server	*	cpe:2.3:h:opengear:acm5000_console_server::::::::
opengear	cm4000_console_server	*	cpe:2.3:h:opengear:cm4000_console_server::::::::

Rows per page:

1-10 of 141

References

jvn.jp/en/jp/JVN71349007/index.html

jvndb.jvn.jp/jvndb/JVNDB-2011-000096

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.005

Percentile

77.5%

JSON

Related for NVD:CVE-2011-3997

cvelist1 cve1 jvn1 prion1