- Description
- Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain "unintended privileged access to data and system resources" via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hp:openvms:7.3:*:openvms_vax:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2BC2EC9D-F494-45CE-9406-59CB2DBAAE53"
},
{
"criteria": "cpe:2.3:a:hp:openvms:7.3_2:*:openvms_vax:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0456600-D516-4BFA-B314-DC31F4131E41"
}
],
"operator": "OR"
}
]
}
]