CVE-2013-2342 — HIGH (7.7) — White Hats Nepal

Q: How severe is CVE-2013-2342?

CVE-2013-2342 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-2342?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Storeonce D2D.

Vulnerability Description

The HP StoreOnce D2D backup system with software before 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote attackers to obtain administrative access and delete data via an SSH session.

CVSS Score

7.7

HIGH

AV:A/AC:L/Au:S/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Hp	Storeonce D2D	<= 2.2.17

Related Weaknesses (CWE)

CWE-255

References

FAQ

What is CVE-2013-2342?

CVE-2013-2342 is a vulnerability with a CVSS score of 7.7 (HIGH). The HP StoreOnce D2D backup system with software before 3.0.0 has a default password of badg3r5 for the HPSupport account, which allows remote attackers to obtain administrative access and delete data...

How severe is CVE-2013-2342?

CVE-2013-2342 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-2342?

Check the references section above for vendor advisories and patch information. Affected products include: Hp Storeonce D2D.