mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
171 lines
6.3 KiB
JSON
171 lines
6.3 KiB
JSON
{
|
|
"id": "CVE-2013-5136",
|
|
"sourceIdentifier": "product-security@apple.com",
|
|
"published": "2013-10-24T03:48:48.893",
|
|
"lastModified": "2024-11-21T01:57:05.140",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Apple Remote Desktop before 3.7 does not properly use server authentication-type information during decisions about whether to present an unencrypted-connection warning message, which allows remote attackers to obtain sensitive information in opportunistic circumstances by sniffing the network during an unintended cleartext VNC session."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Apple Remote Desktop anteriores a 3.7 no utilizan apropiadamente la informaci\u00f3n de tipo de autenticaci\u00f3n de servidor durante decisiones sobre si presentar un mensaje de conexi\u00f3n no cifrada, lo cual permite a atacantes remotos obtener informaci\u00f3n sensible en circunstancias espec\u00edficas mediante la captura de tr\u00e1fico de red durante una sesi\u00f3n VNC no cifrada de manera no intencionada."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
|
|
"baseScore": 4.3,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "MEDIUM",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "NONE",
|
|
"availabilityImpact": "NONE"
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 8.6,
|
|
"impactScore": 2.9,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-200"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "3.6.2",
|
|
"matchCriteriaId": "224FFDC7-9377-472D-880C-CC52D73F696B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4E315CDB-EABA-4632-A4E2-F207695D9139"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "AB6214BD-6D4B-4F32-B35A-D638723C240A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C3EF0960-C1A7-4770-80AD-4324925F8966"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "69A47AAB-EC72-474E-A184-1E487D10B747"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.2.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5509B564-A235-44B9-B0AB-A72AFF5D2837"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "52113D2A-3C14-4299-B4E9-0731630FC5D3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "043E86FA-CFD5-4845-BF5E-F42B81EE9C64"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.3.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2BA5FDCD-BF01-4BF3-8F4C-4E9829C2BD6D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "72309021-65E6-43C0-993D-81F6FA0D16C0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "00BA9937-8F14-4AED-B9DA-ABFA6837CCD5"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8B3B607B-3B0B-44CA-809E-CBC4A656D4D9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "16C73945-1E37-4CFD-BA7D-0F43D339BC0A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9E6C8B83-191B-481B-8B4A-E698160CF4DB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.5.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2D005E8A-3475-4240-ADEB-077FF1F86765"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "24C0CA0D-152A-4C6F-87BF-028F09DF6EEC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:apple:apple_remote_desktop:3.6.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5B603229-6EE5-4217-9A3B-06130276A861"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html",
|
|
"source": "product-security@apple.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00008.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
}
|
|
]
|
|
} |