OpenCVE

Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:S/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Emc	Avamar

Configuration 1 [-]

OR	cpe:2.3:a:emc:avamar::::::::
	cpe:2.3:a:emc:avamar:4.1:::::::*
	cpe:2.3:a:emc:avamar:5.0:::::::*

No data.

References

Link	Providers
http://osvdb.org/71181
http://secunia.com/advisories/43749
http://securityreason.com/securityalert/8138
http://www.securityfocus.com/archive/1/517024/100/0/threaded
http://www.securityfocus.com/bid/46874
https://exchange.xforce.ibmcloud.com/vulnerabilities/66108

History

No history.

MITRE

Status: PUBLISHED

Assigner: dell

Published: 2011-03-16T22:00:00

Updated: 2024-08-06T21:58:26.023Z

Reserved: 2011-01-25T00:00:00

Link: CVE-2011-0648

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-03-16T22:55:02.793

Modified: 2024-11-21T01:24:31.990

Link: CVE-2011-0648

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-15T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-09T18:57:01", "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell"}, "references": [{"name": "8138", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/8138"}, {"name": "46874", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/46874"}, {"name": "43749", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43749"}, {"name": "71181", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/71181"}, {"name": "avamar-unspecified-priv-escalation(66108)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66108"}, {"name": "20110315 ESA-2011-006: EMC Avamar privilege escalation vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/517024/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security_alert@emc.com", "ID": "CVE-2011-0648", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "8138", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/8138"}, {"name": "46874", "refsource": "BID", "url": "http://www.securityfocus.com/bid/46874"}, {"name": "43749", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/43749"}, {"name": "71181", "refsource": "OSVDB", "url": "http://osvdb.org/71181"}, {"name": "avamar-unspecified-priv-escalation(66108)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66108"}, {"name": "20110315 ESA-2011-006: EMC Avamar privilege escalation vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/517024/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:58:26.023Z"}, "title": "CVE Program Container", "references": [{"name": "8138", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/8138"}, {"name": "46874", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/46874"}, {"name": "43749", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43749"}, {"name": "71181", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/71181"}, {"name": "avamar-unspecified-priv-escalation(66108)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66108"}, {"name": "20110315 ESA-2011-006: EMC Avamar privilege escalation vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/517024/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "assignerShortName": "dell", "cveId": "CVE-2011-0648", "datePublished": "2011-03-16T22:00:00", "dateReserved": "2011-01-25T00:00:00", "dateUpdated": "2024-08-06T21:58:26.023Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:emc:avamar:*:*:*:*:*:*:*:*", "matchCriteriaId": "DECC4C05-062E-4B84-BB17-2901FD247A1C", "versionEndIncluding": "5.0.4-26", "vulnerable": true}, {"criteria": "cpe:2.3:a:emc:avamar:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "3F0D5A62-9AF8-4E4B-A208-7772386794A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:emc:avamar:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "56741A4C-2A47-47D5-BA57-73CF24F41267", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en EMC Avamar anterior a v5.0.4-30 permite a usuarios remotos autenticados obtener privilegios a trav\u00e9s de vectores desconocidos ."}], "id": "CVE-2011-0648", "lastModified": "2024-11-21T01:24:31.990", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-03-16T22:55:02.793", "references": [{"source": "security_alert@emc.com", "url": "http://osvdb.org/71181"}, {"source": "security_alert@emc.com", "url": "http://secunia.com/advisories/43749"}, {"source": "security_alert@emc.com", "url": "http://securityreason.com/securityalert/8138"}, {"source": "security_alert@emc.com", "url": "http://www.securityfocus.com/archive/1/517024/100/0/threaded"}, {"source": "security_alert@emc.com", "url": "http://www.securityfocus.com/bid/46874"}, {"source": "security_alert@emc.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66108"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/71181"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/43749"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/8138"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/517024/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/46874"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66108"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}