CVE-2013-4404
First published: Mon Dec 23 2013(Updated: )
cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat enterprise MRG | =2.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-4404?
CVE-2013-4404 is rated as having a moderate severity level due to the potential for unauthorized access to sensitive information.
How do I fix CVE-2013-4404?
To fix CVE-2013-4404, upgrade to the patched versions provided by Red Hat for Enterprise MRG 2.4.
What software is affected by CVE-2013-4404?
CVE-2013-4404 affects Red Hat Enterprise MRG version 2.4.
What type of vulnerability is CVE-2013-4404?
CVE-2013-4404 is an access control vulnerability that allows users to bypass role restrictions.
Can CVE-2013-4404 allow remote access to sensitive data?
Yes, CVE-2013-4404 can allow remote authenticated users to access sensitive information due to improper role enforcement.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/severity
- agent/event
- agent/first-publish-date
- agent/description
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/redhat
- canonical/redhat enterprise mrg
- version/redhat enterprise mrg/2.4