CVE-2011-0730 in Eucalyptusinformazioni

Riassunto

di MITRE

Eucalyptus before 2.0.3 and Eucalyptus EE before 2.0.2, as used in Ubuntu Enterprise Cloud (UEC) and other products, do not properly interpret signed elements in SOAP requests, which allows man-in-the-middle attackers to execute arbitrary commands by modifying a request, related to an "XML Signature Element Wrapping" or a "SOAP signature replay" issue.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

01/02/2011

Divulgazione

02/06/2011

Moderazione

accettato

Voce

VDB-57562

CPE

pronto

CWE

CWE-20 (confermato)

CVSS

6.5 (NVD)

EPSS

0.02174

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0730
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0730
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0730/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!