CVE-2016-0909

EPSS 0.05%
Published 15.11.2016 19:30:00
Last modified 12.04.2025 10:46:40
Source security_alert@emc.com
Teams watchlist Login
Open Login

EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) versions 7.3 and older contain a vulnerability that may expose the Avamar servers to potentially be compromised by malicious users.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Emc ≫ Avamar Data Store Version <= 7.3

Emc ≫ Avamar Server Virtual Edition Version <= 7.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.131

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.4	2.5	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.securityfocus.com/archive/1/539613

Third Party Advisory

http://www.securityfocus.com/bid/93788

http://www.securitytracker.com/id/1037066

https://nvd.nist.gov/vuln/detail/CVE-2016-0909

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-0909

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-0909

EUVD