Lucene search

[email protected]NVD:CVE-2022-30421

HistoryJan 31, 2023 - 1:15 a.m.

CVE-2022-30421

2023-01-3101:15:11

CWE-287

[email protected]

web.nvd.nist.gov

toshiba

storage security

vulnerability

password authentication

sensitive information

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

0.001

Percentile

25.8%

JSON

Improper Authentication vulnerability in Toshiba Storage Security Software V1.2.0.7413 is that allows for sensitive information to be obtained via(local) password authentication module.

Affected configurations

Nvd

Node

toshibastorage_security_softwareMatch1.2.0.7413

VendorProductVersionCPE
toshibastorage_security_software1.2.0.7413cpe:2.3:a:toshiba:storage_security_software:1.2.0.7413:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
toshiba	storage_security_software	1.2.0.7413	cpe:2.3:a:toshiba:storage_security_software:1.2.0.7413:::::::*

References

global.11st.co.kr/glb/product/SellerProductDetail.tmall?method=getSellerProductDetail&prdNo=1398327038

global.gmarket.co.kr/item?goodscode=741668527

github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-px7r-44vj-8h7m

www.ebay.com/itm/274246695791

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.7

Confidence

High

EPSS

0.001

Percentile

25.8%

JSON

Related for NVD:CVE-2022-30421

prion1 cvelist1 cve1