CVE-2013-4820

Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, IceWall SSO SAML2 Agent Option 8.0, IceWall SSO JAVA Agent Library 8.0 through 10.0, IceWall Federation Agent 3.0, and IceWall File Manager 3.0 through SP4 allows remote authenticated users to obtain sensitive information via unknown vectors.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:S/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03918632	Vendor Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03918632

Configurations

Configuration 1 (hide)

cpe:2.3:a:hp:icewall_smart_device_option:10.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:hp:icewall_sso_agent:8.0:::::::*
	cpe:2.3:a:hp:icewall_sso_agent:10.0::::standard:::
	cpe:2.3:a:hp:icewall_sso_agent:10.0::::enterprise:windows::*
	cpe:2.3:a:hp:icewall_sso_agent:8.0:r2:::standard:::*
	cpe:2.3:a:hp:icewall_sso_agent:8.0:r3:::enterprise:::*
	cpe:2.3:a:hp:icewall_sso_agent:8.0:r3:::standard:::*
	cpe:2.3:a:hp:icewall_sso_agent:10.0::::enterprise:::
	cpe:2.3:a:hp:icewall_sso_agent:8.0::enterprise:::::
	cpe:2.3:a:hp:icewall_sso_agent:8.0.1::::standard:::
	cpe:2.3:a:hp:icewall_sso_agent:8.0:r2:::enterprise:::*
	cpe:2.3:a:hp:icewall_sso_agent:10.0::::standard:windows::*

Configuration 3 (hide)

cpe:2.3:a:hp:icewall_sso_saml2_option:8.0:*:*:*:*:*:*:*

Configuration 4 (hide)

OR	cpe:2.3:a:hp:icewall_file_manager:3.0:sp2::::::
	cpe:2.3:a:hp:icewall_file_manager:3.0:sp3::::::
	cpe:2.3:a:hp:icewall_file_manager:3.0:::::::*
	cpe:2.3:a:hp:icewall_file_manager:3.0:sp1::::::
	cpe:2.3:a:hp:icewall_file_manager:3.0:sp4::::::

Configuration 5 (hide)

OR	cpe:2.3:a:hp:icewall_java_agent_library:8.0:::::::*
	cpe:2.3:a:hp:icewall_java_agent_library:8.0::2007:::::
	cpe:2.3:a:hp:icewall_java_agent_library:10.0:::::::*

Configuration 6 (hide)

cpe:2.3:a:hp:icewall_federation_agent:8.0:*:*:*:*:*:*:*

Configuration 7 (hide)

OR	cpe:2.3:a:hp:icewall_sso_agent_option:8.0:::::::*
	cpe:2.3:a:hp:icewall_sso_agent_option:10.0:r1::::::
	cpe:2.3:a:hp:icewall_sso_agent_option:8.0::::2007:::
	cpe:2.3:a:hp:icewall_sso_agent_option:10.0:::::::*

Information

Published : 2013-09-23 03:18

Updated : 2018-05-09 18:29

NVD link : CVE-2013-4820

Mitre link : CVE-2013-4820

JSON object : View

CWE

NVD-CWE-noinfo

Products Affected

icewall_sso_agent_option
icewall_file_manager
icewall_sso_agent
icewall_federation_agent
icewall_sso_saml2_option
icewall_smart_device_option
icewall_java_agent_library

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03918632", "name": "SSRT101310", "tags": ["Vendor Advisory"], "refsource": "HP"}, {"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03918632", "name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c03918632", "tags": [], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in HP IceWall SSO 8.0 through 10.0, IceWall SSO Agent Option 8.0 through 10.0, IceWall SSO Smart Device Option 10.0, IceWall SSO SAML2 Agent Option 8.0, IceWall SSO JAVA Agent Library 8.0 through 10.0, IceWall Federation Agent 3.0, and IceWall File Manager 3.0 through SP4 allows remote authenticated users to obtain sensitive information via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-4820", "ASSIGNER": "hp-security-alert@hp.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2013-09-23T10:18Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_smart_device_option:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:10.0:*:*:*:standard:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:10.0:*:*:*:enterprise:windows:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:r2:*:*:standard:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:r3:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:r3:*:*:standard:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:10.0:*:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:*:enterprise:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0.1:*:*:*:standard:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:8.0:r2:*:*:enterprise:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent:10.0:*:*:*:standard:windows:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_saml2_option:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_file_manager:3.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_file_manager:3.0:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_file_manager:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_file_manager:3.0:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_file_manager:3.0:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_java_agent_library:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_java_agent_library:8.0:*:2007:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_java_agent_library:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_federation_agent:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent_option:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent_option:10.0:r1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent_option:8.0:*:*:*:2007:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:hp:icewall_sso_agent_option:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-05-10T01:29Z"}

2.1 /10