CVE-2000-0427

{"id": "CVE-2000-0427", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2000-05-04T04:00:00.000", "references": [{"url": "http://www.l0pht.com/advisories/etoken-piepa.txt", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/3266", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/1170", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The Aladdin Knowledge Systems eToken device allows attackers with physical access to the device to obtain sensitive information without knowing the PIN of the owner by resetting the PIN in the EEPROM."}], "lastModified": "2008-09-10T19:04:37.617", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:aladdin_knowledge_systems:etoken:3.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2433D9B8-4C1A-4873-9E9A-E640CF34A1DF"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}