Lucene search

[email protected]CVE-2003-0802

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2003-0802

2022-10-0316:15:45

[email protected]

web.nvd.nist.gov

nokia

ned 5.0

directory listing

path disclosure

security vulnerability

cve-2003-0802

nvd

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.014 Low

EPSS

Percentile

86.2%

JSON

Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a “retrieve” action with a location parameter of . (dot).

Affected configurations

NVD

Node

nokiaelectronic_documentationMatch5.0

CPENameOperatorVersion
nokia:electronic_documentationnokia electronic documentationeq5.0

CPE	Name	Operator	Version
nokia:electronic_documentation	nokia electronic documentation	eq	5.0

References

www.atstake.com/research/advisories/2003/a091503-1.txt

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.014 Low

EPSS

Percentile

86.2%

JSON

Related for CVE-2003-0802

cvelist1 nvd1