exploitDog

CVE-2013-1352

Опубликовано: 30 янв. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Verax NMS prior to 2.1.0 uses an encryption key that is hardcoded in a JAR archive.

Ссылки

http://www.securityfocus.com/bid/58334
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/82706
Third Party Advisory
VDB Entry
https://packetstormsecurity.com/files/cve/CVE-2013-1352/page1/
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/58334
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/82706
Third Party Advisory
VDB Entry
https://packetstormsecurity.com/files/cve/CVE-2013-1352/page1/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:veraxsystems:network_management_system:*:*:*:*:*:*:*:*

Версия до 2.1.0 (исключая)

EPSS

Процентиль: 75%

0.00881

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798

Связанные уязвимости

GHSA-gcwr-r3hv-m73v

github

почти 4 года назад

Verax NMS prior to 2.1.0 uses an encryption key that is hardcoded in a JAR archive.

EPSS

Процентиль: 75%

0.00881

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-798