CVE-2005-0358

3 documents3 sources

Severity

7.5HIGH

EPSS

17.9%

top 4.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

EMC Legato Networker SUN Solstice Backup SUN Storedge Enterprise Backup Software

Timeline

PublishedAug 23

Latest updateMay 1

Description

EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDsun/storedge_enterprise_backup_software7.0, 7.1, 7.2+2

▶NVDsun/solstice_backup6.0, 6.1+1

▶NVDemc/legato_networker5 versions+4

Patches

Patch: secunia.com ↗Patch: securitytracker.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-ww2j-hc3f-jj6m: EMC Legato NetWorker, Solstice Backup 6↗2022-05-01

▶

CVEList

CVE-2005-0358: EMC Legato NetWorker, Solstice Backup 6↗2005-08-20

▶