Описание
NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID disk operations via unspecified vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.40 (включая)Версия до 2.5 (включая)Версия до 2.31 (включая)
Одно из
cpe:2.3:a:nec:universal_raid_utility:*:rev_680:*:*:*:*:*:*
cpe:2.3:a:nec:universal_raid_utility:*:rev_2244:*:*:*:*:*:*
cpe:2.3:a:nec:universal_raid_utility:*:rev_1492:*:*:*:*:*:*
cpe:2.3:a:nec:universal_raid_utility:1.40:*:*:*:*:*:*:*
cpe:2.3:a:nec:universal_raid_utility:2.5:*:*:*:*:*:*:*
cpe:2.3:a:nec:universal_raid_utility:2.31:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00547
Низкий
9 Critical
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID disk operations via unspecified vectors.
EPSS
Процентиль: 67%
0.00547
Низкий
9 Critical
CVSS2
Дефекты
CWE-264