CVE-2013-2342

Published Jun 30, 2013

Last updated 5 years ago

CVSS info 7.7

Overview

Description: The HP StoreOnce D2D backup system with software before 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote attackers to obtain administrative access and delete data via an SSH session.
Source: hp-security-alert@hp.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.7
Impact score: 10
Exploitability score: 5.1
Vector string: AV:A/AC:L/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "211072BB-AE4A-4901-BDDA-0169E7618C80",
            "versionEndIncluding": "2.2.17"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.1.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BEBD28B-7020-4910-8516-C800D1E8DF2E"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.2.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81DCC09B-63CD-4CD3-A262-EF71DE57E94D"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5061B50F-1463-4A43-88A9-FC48DF8A0482"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.2.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E8AC7F05-93D7-45BF-8D45-41132ADC4EE4"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.2.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6378C0A-B91D-4ED3-92CB-6E08EC16950E"
          },
          {
            "criteria": "cpe:2.3:a:hp:storeonce_d2d:2.2.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35A3DDCF-2AC7-40C4-9C7D-4390F66E993E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References