CVE-2013-4404

Sažetak

cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors.

Reference

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=995038
http://rhn.redhat.com/errata/RHSA-2013-1851.html
http://rhn.redhat.com/errata/RHSA-2013-1852.html

CVSS

Base:	6.5
Impact:	6.4
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

15-07-2021 - 19:15

Objavljeno

23-12-2013 - 22:55