CVE-2020-23249

Published Jan 5, 2021

Last updated 4 years ago

CVSS medium 4.7

Overview

Description: GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password in plaintext.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 4.7
Impact score: 3.4
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-312

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8D0854F-EBFB-4146-83C8-528BDEE9EC9A",
            "versionEndExcluding": "5.4.04",
            "versionStartIncluding": "5.4.0"
          },
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15E887A2-B5B7-40F6-B4F1-393B3A2C0501",
            "versionEndExcluding": "5.5.02",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7775BCB5-0F51-478E-9ED3-00E81D8140D7",
            "versionEndExcluding": "5.6.02",
            "versionStartIncluding": "5.6.0"
          },
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABE41495-6200-4049-9E4C-DAA0FC52CCBE",
            "versionEndExcluding": "5.7.04",
            "versionStartIncluding": "5.7.0"
          },
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E45FDFA-750E-433F-BBBD-BFBD00786CE6",
            "versionEndExcluding": "5.8.02",
            "versionStartIncluding": "5.8.0"
          },
          {
            "criteria": "cpe:2.3:o:gigamon:gigavue-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4412EFA4-255E-43F6-BE29-B73908E7DA1D",
            "versionEndExcluding": "5.9.00.04",
            "versionStartIncluding": "5.9.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References