CVE-2016-8211

{"id": "CVE-2016-8211", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2017-02-03T07:59:00.327", "references": [{"url": "http://www.securityfocus.com/archive/1/540067/30/0/threaded", "tags": ["Mailing List", "Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/95833", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securitytracker.com/id/1037729", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/archive/1/540067/30/0/threaded", "tags": ["Mailing List", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/95833", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1037729", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446 has a path traversal vulnerability that may potentially be exploited by malicious users to compromise the affected system."}, {"lang": "es", "value": "EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 anterior al parche 446 tiene una vulnerabilidad de salto de ruta que puede ser potencialmente explotada por usuarios malintencionados para comprometer el sistema afectado."}], "lastModified": "2024-11-21T02:58:59.730", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dell:emc_data_protection_advisor:6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FE380D1-FAAD-456C-8B27-2FC319EBA9B2"}, {"criteria": "cpe:2.3:a:dell:emc_data_protection_advisor:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1941D69-2AFA-46AF-B5A6-DA54A704919A"}, {"criteria": "cpe:2.3:a:dell:emc_data_protection_advisor:6.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB940714-D9FD-4980-9F0C-430A36E4AEEC"}, {"criteria": "cpe:2.3:a:dell:emc_data_protection_advisor:6.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB16268F-3AF2-40E1-B762-8735112B193A"}, {"criteria": "cpe:2.3:a:dell:emc_data_protection_advisor:6.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6BF7A92-9944-48FA-81A5-74853E38B678"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}