CVE-2011-1740

Published Sep 19, 2011

Last updated 8 years ago

CVSS info 7.7

Overview

Description: EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain.
Source: security_alert@emc.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.7
Impact score: 10
Exploitability score: 5.1
Vector string: AV:A/AC:L/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:emc:avamar:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "012C16C2-8904-4584-8B22-2D311388A7CF"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F0D5A62-9AF8-4E4B-A208-7772386794A9"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56741A4C-2A47-47D5-BA57-73CF24F41267"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:5.0:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "866AFF0F-F25C-4B11-AAD3-5AE12257CAEF"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:5.0:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "13D2AF12-9343-4961-9FDE-BEAD12E528B8"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:5.0.0-407:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A853F02F-67BA-42E6-8D31-78EEA579A7E7"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:5.0.4-26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8F939D7-8E59-426A-8B80-30E6BA7384F4"
          },
          {
            "criteria": "cpe:2.3:a:emc:avamar:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3ED3F62-A7F2-4E23-9000-1E0FCBC6B5B5"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References