CVE-2013-4404

cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:o:redhat:enterprise_mrg:2.4:*:*:*:*:*:*:*

History

21 Nov 2024, 01:55

Type Values Removed Values Added
References () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=995038 - () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=995038 -
References () http://rhn.redhat.com/errata/RHSA-2013-1851.html - Vendor Advisory () http://rhn.redhat.com/errata/RHSA-2013-1851.html - Vendor Advisory
References () http://rhn.redhat.com/errata/RHSA-2013-1852.html - () http://rhn.redhat.com/errata/RHSA-2013-1852.html -

Information

Published : 2013-12-23 22:55

Updated : 2024-11-21 01:55


NVD link : CVE-2013-4404

Mitre link : CVE-2013-4404

CVE.ORG link : CVE-2013-4404


JSON object : View

Products Affected

redhat

  • enterprise_mrg
CWE
CWE-264

Permissions, Privileges, and Access Controls