Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-0904
HistoryFeb 22, 2008 - 9:44 p.m.

CVE-2008-0904

2008-02-2221:44:00
CWE-200
[email protected]
web.nvd.nist.gov
21
cve-2008-0904
unspecified vulnerability
download servlet
bea plumtree collaboration
aqualogic interaction
remote attackers
arbitrary files
crafted url

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.2%

JSON

Unspecified vulnerability in the download servlet in BEA Plumtree Collaboration 4.1 through SP2 and AquaLogic Interaction 4.2 through MP1 allows remote attackers to read arbitrary files via a crafted URL.

Affected configurations

NVD
Node
bea_systemsaqualogic_interactionMatch4.2
OR
bea_systemsaqualogic_interactionMatch4.2_mp1
OR
bea_systemsplumtree_collaborationMatch4.1
OR
bea_systemsplumtree_collaborationMatch4.1_sp1
OR
bea_systemsplumtree_collaborationMatch4.1_sp2

Related

nvd 1
cvelist 1
prion 1
nvd
nvd
CVE-2008-0904
2008-02-22 21:44:00
cvelist
cvelist
CVE-2008-0904
2008-02-22 21:00:00
prion
prion
Security feature bypass
2008-02-22 21:44:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.2%

JSON
Related for CVE-2008-0904
nvd1cvelist1prion1