Vulnerability Description
The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not require authentication for database access, which allows remote attackers to have an unspecified impact via a network session.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | It Operations Intelligence | <= 9.0 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0095.html
- http://osvdb.org/87877
- http://secunia.com/advisories/51408
- http://www.securityfocus.com/bid/56682
- http://www.securitytracker.com/id?1027812
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0095.html
- http://osvdb.org/87877
- http://secunia.com/advisories/51408
- http://www.securityfocus.com/bid/56682
- http://www.securitytracker.com/id?1027812
FAQ
What is CVE-2012-4614?
CVE-2012-4614 is a vulnerability with a CVSS score of 9.3 (HIGH). The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not require authentication for database access, which allows remote attackers to have an unspecified impact ...
How severe is CVE-2012-4614?
CVE-2012-4614 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4614?
Check the references section above for vendor advisories and patch information. Affected products include: Emc It Operations Intelligence.