CVE-2016-0890

{"id": "CVE-2016-0890", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 4.7, "exploitabilityScore": 1.6}]}, "published": "2017-02-03T07:59:00.157", "references": [{"url": "http://www.securityfocus.com/archive/1/540065/30/0/threaded", "tags": ["Mitigation", "Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/95832", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "EMC PowerPath Virtual (Management) Appliance 2.0, EMC PowerPath Virtual (Management) Appliance 2.0 SP1 is affected by a sensitive information disclosure vulnerability that may potentially be exploited by malicious users to compromise the affected system."}, {"lang": "es", "value": "EMC PowerPath Virtual Appliance 2.0, EMC PowerPath Virtual Appliance 2.0 SP1 se ve afectado por una vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n sensible que potencialmente puede ser explotada por usuarios malintencionados para comprometer el sistema afectado."}], "lastModified": "2017-03-02T16:18:46.743", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emc:powerpath_virtual_appliance:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F09BB019-BBAF-4E66-A875-FA7A9E0FB0CE"}, {"criteria": "cpe:2.3:a:emc:powerpath_virtual_appliance:2.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24D50243-F77A-4B66-8F45-5C2CBA3128C3"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}