Details of VAR-201401-0736

ID

VAR-201401-0736

TITLE

Brocade ServerIron ADX Switch Does Not Verify Telnet Access Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2014-00521

DESCRIPTION

The Brocade ServerIron ADX Series switches provide intelligent application delivery controllers with industry-leading Layer 2 to 7 switching performance. Brocade ServerIron ADX switches include telnet service access without a password, allowing remote attackers to exploit vulnerabilities without having to authenticate access devices.

Trust: 0.6

sources: CNVD: CNVD-2014-00521

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-00521

AFFECTED PRODUCTS

vendor:

brocade

model:

serveriron adx switches

scope:

version:

12.3.01

Trust: 0.6

sources: CNVD: CNVD-2014-00521

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2014-00521
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2014-00521
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2014-00521

EXTERNAL IDS

db:	OSVDB	id:	102315	Trust: 0.6
db:	CNVD	id:	CNVD-2014-00521	Trust: 0.6

sources: CNVD: CNVD-2014-00521

REFERENCES

url:	http://dariusfreamon.wordpress.com/2014/01/02/brocade-serveriron-adx-1016-multiple-vulnerabilities/	Trust: 0.6
url:	http://dariusfreamon.wordpress.com/2014/01/05/serveriron-adx-1016/	Trust: 0.6
url:	http://osvdb.com/show/osvdb/102315	Trust: 0.6

sources: CNVD: CNVD-2014-00521

SOURCES

db:

CNVD

id:

CNVD-2014-00521

LAST UPDATE DATE

2022-05-17T01:51:10.965000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2014-00521

date:

2014-01-23T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2014-00521

date:

2014-01-23T00:00:00