mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-07-29 05:56:17 +00:00
122 lines
4.0 KiB
JSON
122 lines
4.0 KiB
JSON
{
|
|
"id": "CVE-2013-6207",
|
|
"sourceIdentifier": "hp-security-alert@hp.com",
|
|
"published": "2014-03-11T13:01:04.310",
|
|
"lastModified": "2017-07-01T01:29:04.857",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of service via unknown vectors, aka ZDI-CAN-2084."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Vulnerabilidad no especificada en la funci\u00f3n loadFileContents en la implementaci\u00f3n SOAP en HP SiteScope 10.1x, 11.1x y 11.21 permite a atacantes remotos leer archivos arbitrarios o causar una denegaci\u00f3n de servicio a trav\u00e9s de vectores desconocidos, tambi\u00e9n conocido como ZDI-CAN-2084."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:C",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "COMPLETE",
|
|
"integrityImpact": "NONE",
|
|
"availabilityImpact": "COMPLETE",
|
|
"baseScore": 9.4
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 9.2,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-noinfo"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:10.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "350D9EFA-0084-46B3-B0B7-206DA2E37026"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:10.11:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "35BC44DF-A9E0-4789-9646-B6142A68682D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:10.12:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F1790EEF-8320-446D-A978-478A6A9FEC86"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:10.13:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C62A1094-99FA-4730-9550-133D3C428A7E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:11.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C1C9A83F-4592-42E6-AB6B-4A6F2473776A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:11.11:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C55233A3-9D1B-4C63-8362-AF6630D3ECAA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:11.12:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "309EBA0A-9F62-4852-895A-A1E68E4AEE70"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:hp:sitescope:11.21:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5F8F86F8-D697-44B8-9216-2319EF7A76D6"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03969435",
|
|
"source": "hp-security-alert@hp.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03969435",
|
|
"source": "hp-security-alert@hp.com"
|
|
}
|
|
]
|
|
} |