nvd-json-data-feeds/CVE-2013/CVE-2013-20xx/CVE-2013-2056.json

{
  "id": "CVE-2013-2056",
  "sourceIdentifier": "secalert@redhat.com",
  "published": "2013-07-31T13:20:24.697",
  "lastModified": "2024-11-21T01:50:56.807",
  "vulnStatus": "Modified",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Inter-Satellite Sync (ISS) operation in Red Hat Network (RHN) Satellite 5.3, 5.4, and 5.5 does not properly check client \"authenticity,\" which allows remote attackers to obtain channel content by skipping the initial authentication call."
    },
    {
      "lang": "es",
      "value": "La operaci\u00f3n Inter-Satellite Sync (ISS) en Red Hat Network (RHN) Satellite 5.3, 5.4, y 5.5 no valida adecuadamente la \"autenticidad\" del cliente, lo que permite a atacantes remotos obtener el contenido de un canal evitando la llamada inicial para la autenticaci\u00f3n."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "baseScore": 5.0,
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE"
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-287"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:redhat:satellite:5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1FDDB68-9828-4DAF-8417-4E3B68ABA2C5"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:redhat:satellite:5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "3CCE54F9-0195-4E9D-A15F-3947EA0EBED7"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:redhat:satellite:5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B6D3920-6A7D-4AF8-A620-80C89FF454F2"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://rhn.redhat.com/errata/RHSA-2013-0848.html",
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://secunia.com/advisories/53487",
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.osvdb.org/93566",
      "source": "secalert@redhat.com"
    },
    {
      "url": "http://rhn.redhat.com/errata/RHSA-2013-0848.html",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://secunia.com/advisories/53487",
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.osvdb.org/93566",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    }
  ]
}
bootstrap 2023-04-24 12:24:31 +02:00			`{`
			`"id": "CVE-2013-2056",`
			`"sourceIdentifier": "secalert@redhat.com",`
			`"published": "2013-07-31T13:20:24.697",`
Auto-Update: 2024-11-22T19:12:10.918177+00:00 2024-11-22 19:15:24 +00:00			`"lastModified": "2024-11-21T01:50:56.807",`
			`"vulnStatus": "Modified",`
Auto-Update: 2024-12-08T03:00:18.988682+00:00 2024-12-08 03:06:42 +00:00			`"cveTags": [],`
bootstrap 2023-04-24 12:24:31 +02:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "The Inter-Satellite Sync (ISS) operation in Red Hat Network (RHN) Satellite 5.3, 5.4, and 5.5 does not properly check client \"authenticity,\" which allows remote attackers to obtain channel content by skipping the initial authentication call."`
			`},`
			`{`
			`"lang": "es",`
			`"value": "La operaci\u00f3n Inter-Satellite Sync (ISS) en Red Hat Network (RHN) Satellite 5.3, 5.4, y 5.5 no valida adecuadamente la \"autenticidad\" del cliente, lo que permite a atacantes remotos obtener el contenido de un canal evitando la llamada inicial para la autenticaci\u00f3n."`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV2": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "2.0",`
			`"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",`
Auto-Update: 2024-11-22T19:12:10.918177+00:00 2024-11-22 19:15:24 +00:00			`"baseScore": 5.0,`
bootstrap 2023-04-24 12:24:31 +02:00			`"accessVector": "NETWORK",`
			`"accessComplexity": "LOW",`
			`"authentication": "NONE",`
			`"confidentialityImpact": "PARTIAL",`
			`"integrityImpact": "NONE",`
Auto-Update: 2024-11-22T19:12:10.918177+00:00 2024-11-22 19:15:24 +00:00			`"availabilityImpact": "NONE"`
bootstrap 2023-04-24 12:24:31 +02:00			`},`
			`"baseSeverity": "MEDIUM",`
			`"exploitabilityScore": 10.0,`
			`"impactScore": 2.9,`
			`"acInsufInfo": false,`
			`"obtainAllPrivilege": false,`
			`"obtainUserPrivilege": false,`
			`"obtainOtherPrivilege": false,`
			`"userInteractionRequired": false`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-287"`
			`}`
			`]`
			`}`
			`],`
			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:redhat:satellite:5.3:::::::*",`
			`"matchCriteriaId": "D1FDDB68-9828-4DAF-8417-4E3B68ABA2C5"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:redhat:satellite:5.4:::::::*",`
			`"matchCriteriaId": "3CCE54F9-0195-4E9D-A15F-3947EA0EBED7"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:redhat:satellite:5.5:::::::*",`
			`"matchCriteriaId": "9B6D3920-6A7D-4AF8-A620-80C89FF454F2"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "http://rhn.redhat.com/errata/RHSA-2013-0848.html",`
			`"source": "secalert@redhat.com",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
Auto-Update: 2024-04-04T08:42:25.815847+00:00 2024-04-04 08:46:00 +00:00			`},`
			`{`
			`"url": "http://secunia.com/advisories/53487",`
			`"source": "secalert@redhat.com",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
			`},`
			`{`
			`"url": "http://www.osvdb.org/93566",`
			`"source": "secalert@redhat.com"`
Auto-Update: 2024-11-22T19:12:10.918177+00:00 2024-11-22 19:15:24 +00:00			`},`
			`{`
			`"url": "http://rhn.redhat.com/errata/RHSA-2013-0848.html",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
			`},`
			`{`
			`"url": "http://secunia.com/advisories/53487",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108",`
			`"tags": [`
			`"Vendor Advisory"`
			`]`
			`},`
			`{`
			`"url": "http://www.osvdb.org/93566",`
			`"source": "af854a3a-2127-422b-91ae-364da2661108"`
bootstrap 2023-04-24 12:24:31 +02:00			`}`
			`]`
			`}`