CVE-2012-4614
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not require authentication for database access, which allows remote attackers to have an unspecified impact via a network session.
La configuración por defecto de EMC Smarts Network Configuration Manager (NCM) antes de v9.1 no requiere de autenticación para el acceso a la base de datos, lo que permite a atacantes remotos tener un impacto no especificado a través de una sesión de red.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-08-24 CVE Reserved
- 2012-11-27 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2012-11/0095.html | Mailing List | |
| http://osvdb.org/87877 | Vdb Entry | |
| http://secunia.com/advisories/51408 | Third Party Advisory | |
| http://www.securityfocus.com/bid/56682 | Vdb Entry | |
| http://www.securitytracker.com/id?1027812 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Emc Search vendor "Emc" | It Operations Intelligence Search vendor "Emc" for product "It Operations Intelligence" | <= 9.0 Search vendor "Emc" for product "It Operations Intelligence" and version " <= 9.0" | - |
Affected
| ||||||