CVE-2013-2193

Published May 29, 2014

Last updated 3 months ago

CVSS info 4.3

Overview

Description: Apache HBase 0.92.x before 0.92.3 and 0.94.x before 0.94.9, when the Kerberos features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via unspecified vectors.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 6.4
Exploitability score: 3.2
Vector string: AV:A/AC:H/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-287

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.92.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "804A0AA5-7AA1-4358-BA71-49334BFEEE77"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.92.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B929D829-96F5-4113-B24B-DB5ED62E4067"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.92.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3A6634B-5961-4742-B488-22F6E412E96A"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F59962D-DE11-4015-9066-24F3C7518CD3"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45CA893D-DA31-4807-9217-9CFB360B5880"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29AA8948-FA22-4F0F-A474-859C3ED2F1E2"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F2C9CDC-ACB3-4819-BC75-EDAC0B2EE806"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5826774-F65D-4A7D-A4B1-A51FE04C0CB2"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "062C34FE-DB16-49EE-8869-128C8E11FEDF"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4C97D9B-D6F0-4F20-847F-77F9493E70A5"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0777B099-7380-4060-A62C-DF1EF5FCD191"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A82B7232-92C7-4D8C-B0D8-2DEC73AA1CD1"
          },
          {
            "criteria": "cpe:2.3:a:apache:hbase:0.94.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E33C81F-8F8D-4259-BF03-0B631F70FE96"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References