Описание
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
Ссылки
- PatchVendor Advisory
- Vendor Advisory
- Patch
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchVendor Advisory
- Vendor Advisory
- Patch
- PatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:emc:legato_networker:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:6.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:6.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:7.2:*:*:*:*:*:*:*
cpe:2.3:a:emc:legato_networker:7.13:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_backup:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_backup:6.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:storedge_enterprise_backup_software:7.2:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.17887
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
EPSS
Процентиль: 95%
0.17887
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other