CVE-2019-6178 Vulnerability Details

  /     /     /  

CVE-2019-6178 Metadata Quick Info

CVE Published: 19/08/2019 | CVE Updated: 17/09/2024 | CVE Year: 2019
Source: lenovo | Vendor: Iomega and LenovoEMC | Product: NAS products
Status : PUBLISHED

CVE-2019-6178 Description

An information leakage vulnerability in Iomega and LenovoEMC NAS products could allow disclosure of some device details such as Share names through the device API when Personal Cloud is enabled. This does not allow read, write, delete, or any other access to the underlying file systems and their contents.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Information disclosure
Source: Iomega and LenovoEMC

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description: