Lucene search

[email protected]CVE-2007-6006

HistoryNov 15, 2007 - 10:46 p.m.

CVE-2007-6006

2007-11-1522:46:00

CWE-287

[email protected]

web.nvd.nist.gov

testlink

cve-2007-6006

nvd

authorization mechanism

security vulnerability

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.1%

JSON

TestLink before 1.7.1 does not enforce an unspecified authorization mechanism, which has unknown impact and attack vectors.

CPENameOperatorVersion
testlink:testlinktestlinkle1.7.0

CPE	Name	Operator	Version
testlink:testlink	testlink	le	1.7.0

References

osvdb.org/42211

secunia.com/advisories/27600

sourceforge.net/project/shownotes.php?release_id=548619&group_id=90976

www.securityfocus.com/bid/26439

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.1%

JSON

Related for CVE-2007-6006

prion1 cvelist1