CVE-2010-3018

{"id": "CVE-2010-3018", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-09-09T22:00:02.530", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2010-09/0056.html", "source": "security_alert@emc.com"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2010-09/0056.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "RSA Access Manager Server 5.5.3 before 5.5.3.172, 6.0.4 before 6.0.4.53, and 6.1 before 6.1.2.01 does not properly perform cache updates, which allows remote attackers to obtain sensitive information via unspecified vectors."}, {"lang": "es", "value": "RSA Access Manager Server v5.5.3 anterior a v5.5.3.172, v6.0.4 anterior a v6.0.4.53, y v6.1 anterior a v6.1.2.01 no lleva a cabo correctamente actualizaciones de la cache, lo que puede permitir a un atacante obtener informaci\u00f3n sensible mediante vectores no espec\u00edficos"}], "lastModified": "2024-11-21T01:17:52.960", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rsa:access_manager_server:5.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5331D2E4-AF16-4295-AB90-7DCCD6186C9A"}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3B96EB6-1D36-4917-908D-D32DE788A0C7"}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C5BA71D-0AF8-4530-ADF1-DB4DA8C47D9B"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}