CVE-2013-4404

cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors.

Published: Dec 23, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-4404
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
redhat / enterprise_mrg	2.4	2.4.x

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=995038
http://rhn.redhat.com/errata/RHSA-2013-1851.html
http://rhn.redhat.com/errata/RHSA-2013-1852.html

Vulnerability Database

289,697

CVE-2013-4404