9.8
CVE-2017-2765
- EPSS 0.14%
- Veröffentlicht 08.02.2017 17:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
- Quelle security_alert@emc.com
- Teams Watchlist Login
- Unerledigt Login
EMC Isilon InsightIQ 4.1.0, 4.0.1, 4.0.0, 3.2.2, 3.2.1, 3.2.0, 3.1.1, 3.1.0, 3.0.1, 3.0.0 is affected by an authentication bypass vulnerability that could potentially be exploited by attackers to compromise the affected system.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Emc ≫ Isilon Insightiq Version3.0.0
Emc ≫ Isilon Insightiq Version3.0.1
Emc ≫ Isilon Insightiq Version3.1.0
Emc ≫ Isilon Insightiq Version3.1.1
Emc ≫ Isilon Insightiq Version3.2.0
Emc ≫ Isilon Insightiq Version3.2.1
Emc ≫ Isilon Insightiq Version3.2.2
Emc ≫ Isilon Insightiq Version4.0.0
Emc ≫ Isilon Insightiq Version4.0.1
Emc ≫ Isilon Insightiq Version4.1.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.305 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.