CVE-2013-3624

The OS deployment feature in Baramundi Management Suite 7.5 through 8.9 stores credentials in cleartext on deployed machines, which allows remote attackers to obtain sensitive information by reading a file. NOTE: this ID was also incorrectly mapped to a separate issue in Oracle Outside In, but the correct ID for that issue is CVE-2013-5763.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:N/A:N
certccCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
baramundimanagement_suite
7.5
baramundimanagement_suite
7.6
baramundimanagement_suite
8.0
baramundimanagement_suite
8.1
baramundimanagement_suite
8.2
baramundimanagement_suite
8.3
baramundimanagement_suite
8.5
baramundimanagement_suite
8.6
baramundimanagement_suite
8.7
baramundimanagement_suite
8.8
baramundimanagement_suite
8.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.kb.cert.org/vuls/id/392654
http://www.kb.cert.org/vuls/id/392654