PT-2013-2544 · Nec · Nec Universal Raid Utility

Publicado

2013-02-22

Atualizado

2013-03-08

CVE-2013-0706

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions NEC Universal RAID Utility versions 1.40 Rev 680 and earlier NEC Universal RAID Utility versions 2.31 Rev 1492 and earlier NEC Universal RAID Utility versions 2.5 Rev 2244 and earlier

Description The issue allows remote attackers to perform arbitrary RAID disk operations due to a lack of access control.

Recommendations For NEC Universal RAID Utility versions 1.40 Rev 680 and earlier, update to a version that provides access control. For NEC Universal RAID Utility versions 2.31 Rev 1492 and earlier, update to a version that provides access control. For NEC Universal RAID Utility versions 2.5 Rev 2244 and earlier, update to a version that provides access control.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2013-0706

Produtos afetados

Nec Universal Raid Utility

PT-2013-2544 · Nec · Nec Universal Raid Utility

CVE-2013-0706

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4