Vulnerability CVE-2013-4820
Published: 2013-09-23

Description:
Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, IceWall SSO SAML2 Agent Option 8.0, IceWall SSO JAVA Agent Library 8.0 through 10.0, IceWall Federation Agent 3.0, and IceWall File Manager 3.0 through SP4 allows remote authenticated users to obtain sensitive information via unknown vectors.

Type:

CWE-noinfo

CVSS2 => (AV:N/AC:H/Au:S/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Remote
High
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
HP -> Icewall federation agent 
HP -> Icewall file manager 
HP -> Icewall java agent library 
HP -> Icewall smart device option 
HP -> Icewall sso agent 
HP -> Icewall sso agent option 
HP -> Icewall sso saml2 option 

 References:
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03918632
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03918632
Copyright 2024, cxsecurity.com

 

Back to Top