Lucene search
HistoryFeb 16, 2001 - 5:00 a.m.
CVE-2001-0031
broadvision one-to-one
remote attack
server files
.jsp file
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
75.4%
BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist.
Affected configurations
Node
broadvisionone-to-one_enterprise_serverMatch1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| broadvision:one-to-one_enterprise_server | broadvision one-to-one enterprise server | eq | 1.0 |
Related
nessus
nessus
BroadVision One-To-One Enterprise Nonexistent JSP Request Path Disclosure
2001-06-15 00:00:00
nvd
nvd
CVE-2001-0031
2001-02-16 05:00:00
cvelist
cvelist
CVE-2001-0031
2001-02-02 05:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
75.4%
Related for CVE-2001-0031