- Description
- Dell EMC NetWorker versions 19.1.x, 19.1.0.x, 19.1.1.x, 19.2.x, 19.2.0.x, 19.2.1.x 19.3.x, 19.3.0.x, 19.4.x, 19.4.0.x, 19.5.x,19.5.0.x, 19.6 and 19.6.0.1 and 19.6.0.2 contain an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port 5671 which could allow remote attackers to spoof certificates.
- Source
- security_alert@emc.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 4.6
- Impact score
- 2.5
- Exploitability score
- 2.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 4.9
- Impact score
- 4.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:P/I:P/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:emc_networker:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50809EA5-5FD4-4EA9-8B16-5B989C3148C3",
"versionEndExcluding": "19.5.0.7",
"versionStartIncluding": "19.1.1.0"
},
{
"criteria": "cpe:2.3:a:dell:emc_networker:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F023FC70-23F2-41DA-8C65-08E158202A68",
"versionEndExcluding": "19.6.0.3",
"versionStartIncluding": "19.6.0"
},
{
"criteria": "cpe:2.3:a:dell:emc_networker:19.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABFB4AAA-A491-4B6E-91F2-79AA0D44EB1F"
}
],
"operator": "OR"
}
]
}
]