Lucene search

K
cve[email protected]CVE-2008-4188
HistorySep 23, 2008 - 5:01 p.m.

CVE-2008-4188

2008-09-2317:01:22
CWE-94
web.nvd.nist.gov
18
cve-2008-4188
typo3
kw_secdir
vulnerability
remote code execution
nvd

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.9%

Unspecified vulnerability in the TYPO3 Secure Directory (kw_secdir) extension before 1.0.2 allows remote attackers to execute arbitrary code via unknown vectors related to “injection of control characters.”

Affected configurations

NVD
Node
typo3secure_directoryRange1.0.1
OR
typo3secure_directoryMatch0.1.3
OR
typo3secure_directoryMatch1.0.0

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.029 Low

EPSS

Percentile

90.9%

Related for CVE-2008-4188