Lucene search

[email protected]NVD:CVE-2013-4452

HistoryDec 24, 2013 - 7:55 p.m.

CVE-2013-4452

2013-12-2419:55:07

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other unspecified sensitive information by reading these files.

Affected configurations

Nvd

Node

redhatjboss_operations_networkMatch3.1.2

VendorProductVersionCPE
redhatjboss_operations_network3.1.2cpe:2.3:a:redhat:jboss_operations_network:3.1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	jboss_operations_network	3.1.2	cpe:2.3:a:redhat:jboss_operations_network:3.1.2:::::::*

References

rhn.redhat.com/errata/RHSA-2013-1762.html

secunia.com/advisories/55852

www.securityfocus.com/bid/63916

www.securitytracker.com/id/1029390

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2013-4452

cve1 prion1 cvelist1