PT-2013-2544 · Nec · Nec Universal Raid Utility
Published
2013-02-22
·
Updated
2013-03-08
·
CVE-2013-0706
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:C |
Name of the Vulnerable Software and Affected Versions
NEC Universal RAID Utility versions 1.40 Rev 680 and earlier
NEC Universal RAID Utility versions 2.31 Rev 1492 and earlier
NEC Universal RAID Utility versions 2.5 Rev 2244 and earlier
Description
The issue allows remote attackers to perform arbitrary RAID disk operations due to a lack of access control.
Recommendations
For NEC Universal RAID Utility versions 1.40 Rev 680 and earlier, update to a version that provides access control.
For NEC Universal RAID Utility versions 2.31 Rev 1492 and earlier, update to a version that provides access control.
For NEC Universal RAID Utility versions 2.5 Rev 2244 and earlier, update to a version that provides access control.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nec Universal Raid Utility