Vulnerability Description
NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID disk operations via unspecified vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nec | Universal Raid Utility | <= 1.40 |
Related Weaknesses (CWE)
References
- http://jpn.nec.com/security-info/secinfo/nv13-004.htmlVendor Advisory
- http://jvn.jp/en/jp/JVN75585394/index.htmlVendor Advisory
- http://jvndb.jvn.jp/jvndb/JVNDB-2013-000012Vendor Advisory
- http://jpn.nec.com/security-info/secinfo/nv13-004.htmlVendor Advisory
- http://jvn.jp/en/jp/JVN75585394/index.htmlVendor Advisory
- http://jvndb.jvn.jp/jvndb/JVNDB-2013-000012Vendor Advisory
FAQ
What is CVE-2013-0706?
CVE-2013-0706 is a vulnerability with a CVSS score of 9.0 (HIGH). NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID di...
How severe is CVE-2013-0706?
CVE-2013-0706 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0706?
Check the references section above for vendor advisories and patch information. Affected products include: Nec Universal Raid Utility.