CVE-2011-2907 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:P/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 72%

Affected Products (NVD)

Vendor	Product	Version
clusterresources	torque_resource_manager	𝑥 ≤ 3.0.1
clusterresources	torque_resource_manager	2.1.0
clusterresources	torque_resource_manager	2.1.0p11:p11
clusterresources	torque_resource_manager	2.1.1
clusterresources	torque_resource_manager	2.1.2
clusterresources	torque_resource_manager	2.1.3
clusterresources	torque_resource_manager	2.1.6
clusterresources	torque_resource_manager	2.1.7
clusterresources	torque_resource_manager	2.1.8
clusterresources	torque_resource_manager	2.1.9
clusterresources	torque_resource_manager	2.1.10
clusterresources	torque_resource_manager	2.1.11
clusterresources	torque_resource_manager	2.2.1
clusterresources	torque_resource_manager	2.3.0
clusterresources	torque_resource_manager	2.3.1
clusterresources	torque_resource_manager	2.3.2
clusterresources	torque_resource_manager	2.3.3
clusterresources	torque_resource_manager	2.3.4
clusterresources	torque_resource_manager	2.3.5
clusterresources	torque_resource_manager	2.3.6
clusterresources	torque_resource_manager	2.3.7
clusterresources	torque_resource_manager	2.3.8
clusterresources	torque_resource_manager	2.3.9
clusterresources	torque_resource_manager	2.3.10
clusterresources	torque_resource_manager	2.3.11
clusterresources	torque_resource_manager	2.3.12
clusterresources	torque_resource_manager	2.3.13
clusterresources	torque_resource_manager	2.4.2
clusterresources	torque_resource_manager	2.4.3
clusterresources	torque_resource_manager	2.4.4
clusterresources	torque_resource_manager	2.4.5
clusterresources	torque_resource_manager	2.4.6
clusterresources	torque_resource_manager	2.4.7
clusterresources	torque_resource_manager	2.4.8
clusterresources	torque_resource_manager	2.4.9
clusterresources	torque_resource_manager	2.4.10
clusterresources	torque_resource_manager	2.4.11
clusterresources	torque_resource_manager	2.4.12
clusterresources	torque_resource_manager	2.4.13
clusterresources	torque_resource_manager	2.5.0
clusterresources	torque_resource_manager	2.5.1
clusterresources	torque_resource_manager	2.5.2
clusterresources	torque_resource_manager	2.5.3
clusterresources	torque_resource_manager	2.5.4
clusterresources	torque_resource_manager	2.5.5
clusterresources	torque_resource_manager	3.0.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

torque

artful	dne
bionic	dne
hardy	ignored
lucid	ignored
maverick	ignored
natty	ignored
oneiric	ignored
precise	ignored
quantal	ignored
raring	ignored
saucy	ignored
trusty	ignored
utopic	ignored
vivid	ignored
wily	ignored
xenial	ignored
yakkety	ignored
zesty	dne

Common Weakness Enumeration

CWE-287 - Improper Authentication
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

References

http://secunia.com/advisories/45524

http://www.clusterresources.com/pipermail/torqueusers/2011-August/013194.html

http://www.openwall.com/lists/oss-security/2011/08/11/1

http://www.securityfocus.com/bid/49119

https://bugzilla.redhat.com/show_bug.cgi?id=713090

https://exchange.xforce.ibmcloud.com/vulnerabilities/69138

https://wiki.egi.eu/wiki/SVG:Advisory-SVG-2011-2296

http://secunia.com/advisories/45524

http://www.clusterresources.com/pipermail/torqueusers/2011-August/013194.html

http://www.openwall.com/lists/oss-security/2011/08/11/1

http://www.securityfocus.com/bid/49119

https://bugzilla.redhat.com/show_bug.cgi?id=713090

https://exchange.xforce.ibmcloud.com/vulnerabilities/69138

https://wiki.egi.eu/wiki/SVG:Advisory-SVG-2011-2296