Lucene search

[email protected]CVE-2006-2717

HistoryMay 31, 2006 - 10:02 p.m.

CVE-2006-2717

2006-05-3122:02:00

[email protected]

web.nvd.nist.gov

cve-2006-2717

unspecified vulnerability

secure elements

class 5 avr

c5 evm

file overwrite

directory traversal

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.0%

JSON

Unspecified vulnerability in Secure Elements Class 5 AVR client and server (aka C5 EVM) before 2.8.1 allows authenticated attackers to overwrite arbitrary files (1) on a server during an update or (2) on a client via modified pathnames, possibly due to a directory traversal issue.

Affected configurations

NVD

Node

secure_elementsc5_enterprise_vulnerability_management

CPENameOperatorVersion
secure_elements:c5_enterprise_vulnerability_managementsecure elements c5 enterprise vulnerability managementeq*

CPE	Name	Operator	Version
secure_elements:c5_enterprise_vulnerability_management	secure elements c5 enterprise vulnerability management	eq	*

References

secunia.com/advisories/20378

securitytracker.com/id?1016184

www.kb.cert.org/vuls/id/764025

www.kb.cert.org/vuls/id/912217

www.kb.cert.org/vuls/id/WDON-6QAJFA

www.kb.cert.org/vuls/id/WDON-6QAPC5

www.vupen.com/english/advisories/2006/2069

exchange.xforce.ibmcloud.com/vulnerabilities/26771

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.0%

JSON

Related for CVE-2006-2717

cvelist1 nvd1 prion1