Lucene search

[email protected]CVE-2002-1709

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-1709

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1709

sql injection

basilix webmail 1.10

remote attackers

sensitive information

data modification

7.6 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.8%

JSON

SQL injection vulnerability in BasiliX Webmail 1.10 allows remote attackers to obtain sensitive information or possibly modify data via the id variable.

CPENameOperatorVersion
basilix:basilix_webmailbasilix basilix webmaileq1.1.0

CPE	Name	Operator	Version
basilix:basilix_webmail	basilix basilix webmail	eq	1.1.0

References

archives.neohapsis.com/archives/vulnwatch/2002-q2/0117.html

online.securityfocus.com/archive/1/277710

www.securityfocus.com/bid/5061

exchange.xforce.ibmcloud.com/vulnerabilities/9385

7.6 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.8%

JSON

Related for CVE-2002-1709

openvas2 nessus1