CVE-2017-2765

{"id": "CVE-2017-2765", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2017-02-08T17:59:00.153", "references": [{"url": "http://www.securityfocus.com/archive/1/540100/30/0/threaded", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/95945", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/archive/1/540100/30/0/threaded", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/95945", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-287"}]}], "descriptions": [{"lang": "en", "value": "EMC Isilon InsightIQ 4.1.0, 4.0.1, 4.0.0, 3.2.2, 3.2.1, 3.2.0, 3.1.1, 3.1.0, 3.0.1, 3.0.0 is affected by an authentication bypass vulnerability that could potentially be exploited by attackers to compromise the affected system."}, {"lang": "es", "value": "EMC Isilon InsightIQ 4.1.0, 4.0.1, 4.0.0, 3.2.2, 3.2.1, 3.2.0, 3.1.1, 3.1.0, 3.0.1, 3.0.0 est\u00e1 afectado por una vulnerabilidad de elusi\u00f3n de autenticaci\u00f3n que podr\u00eda ser explotada potencialmente por atacantes para comprometer el sistema afectado."}], "lastModified": "2024-11-21T03:24:07.307", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4D35198-BA21-445D-9693-BAF66AE61099"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "341857D8-1DBB-479F-9C56-D17ACFC8117F"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D91524EB-ECF4-433A-A1D9-7574FAA3F58C"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B9ABABD-2320-4C27-BFD7-1E6E34B453C7"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47BB054C-6573-4516-B74A-5B6BED8A82C9"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87999B65-7C3D-474A-90CD-00585641027E"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:3.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AE8CFAC-5941-4A39-81DD-2AB3FEA90A4C"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:4.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "618AE0B4-5DAD-44DC-9C50-4E68873B0931"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:4.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B29B844-C048-42EE-8343-A9F23C513F21"}, {"criteria": "cpe:2.3:a:emc:isilon_insightiq:4.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "722FF243-ECAE-4193-ACC3-25AF6FB1D571"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}