CVE-2013-0264
HIGHMRG Management Console - Improper Certificate Validation
Title source: llmDescription
An import error was introduced in Cumin in the code refactoring in r5310. Server certificate validation is always disabled when connecting to Aviary servers, even if the installed packages on a system support it.
References (2)
Core 2
Core References
Issue Tracking, Patch, Vendor Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0264
Vendor Advisory x_refsource_misc
https://access.redhat.com/security/cve/cve-2013-0264
Scores
CVSS v3
7.5
EPSS
0.0054
EPSS Percentile
41.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-295
Status
published
Products (1)
redhat/mrg_management_console
r5310
Published
Dec 30, 2019
Tracked Since
Feb 18, 2026