CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-4734

dasdec_mkuser on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 generates predictable passwords, which might make it easier for attackers to obtain non-administrative access via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.digitalalertsystems.com/pdf/130604-Monroe-Security-PR.pdf
http://www.kb.cert.org/vuls/id/662676
http://www.kb.cert.org/vuls/id/AAMN-98MU7H
http://www.kb.cert.org/vuls/id/AAMN-98MUK2
http://www.monroe-electronics.com/MONROE_ELECTRONICS_PDF/130604-Monroe-Security-PR.pdf
http://www.digitalalertsystems.com/pdf/130604-Monroe-Security-PR.pdf
http://www.kb.cert.org/vuls/id/662676
http://www.kb.cert.org/vuls/id/AAMN-98MU7H
http://www.kb.cert.org/vuls/id/AAMN-98MUK2
http://www.monroe-electronics.com/MONROE_ELECTRONICS_PDF/130604-Monroe-Security-PR.pdf

Products affected by CVE-2013-4734

Digital Alert Systems » Dasdec Eas » Version: Any

cpe:2.3:h:digital_alert_systems:dasdec_eas:*
Digital Alert Systems » Dasdec Eas » Version: 2.0-0

cpe:2.3:h:digital_alert_systems:dasdec_eas:2.0-0
Monroe Electronics » R189 One-Net Eas » Version: Any

cpe:2.3:h:monroe_electronics:r189_one-net_eas:*
Monroe Electronics » R189 One-Net Eas » Version: 2.0-0

cpe:2.3:h:monroe_electronics:r189_one-net_eas:2.0-0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4734

Products

Pricing

Contact Us