Lucene search

K
cve[email protected]CVE-2007-0516
HistoryJan 26, 2007 - 1:28 a.m.

CVE-2007-0516

2007-01-2601:28:00
web.nvd.nist.gov
23
yana framework
guestbook
profile modification
remote authentication
cve-2007-0516
nvd

6.2 Medium

AI Score

Confidence

Low

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

49.7%

Yana Framework before 2.8.5a allows remote authenticated users with permissions to modify a guestbook profile to modify or delete arbitrary guestbook profiles via unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD
Node
yana_frameworkyana_frameworkRange2.8.4a
OR
yana_frameworkyana_frameworkMatch2.8
OR
yana_frameworkyana_frameworkMatch2.8.1
OR
yana_frameworkyana_frameworkMatch2.8.2a
OR
yana_frameworkyana_frameworkMatch2.8.3a

6.2 Medium

AI Score

Confidence

Low

4.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:P/A:P

0.001 Low

EPSS

Percentile

49.7%

Related for CVE-2007-0516