Lucene search
MitreCVE-2008-6399HistoryMar 05, 2009 - 8:30 p.m.
CVE-2008-6399
2009-03-0520:30:00
CWE-264
mitre
web.nvd.nist.gov
30
cve
dotnetnuke
vulnerability
remote attackers
user account
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
71.4%
Unspecified vulnerability in DotNetNuke 4.5.2 through 4.9 allows remote attackers to “add additional roles to their user account” via unknown attack vectors.
Affected configurations
Node
dotnetnukedotnetnukeMatch4.5.2
ORdotnetnukedotnetnukeMatch4.8.1
ORdotnetnukedotnetnukeMatch4.8.2
ORdotnetnukedotnetnukeMatch4.8.3
ORdotnetnukedotnetnukeMatch4.8.4
ORdotnetnukedotnetnukeMatch4.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dotnetnuke | dotnetnuke | 4.5.2 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.2:*:*:*:*:*:*:* |
| dotnetnuke | dotnetnuke | 4.8.1 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.1:*:*:*:*:*:*:* |
| dotnetnuke | dotnetnuke | 4.8.2 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.2:*:*:*:*:*:*:* |
| dotnetnuke | dotnetnuke | 4.8.3 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.3:*:*:*:*:*:*:* |
| dotnetnuke | dotnetnuke | 4.8.4 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.4:*:*:*:*:*:*:* |
| dotnetnuke | dotnetnuke | 4.9 | cpe:2.3:a:dotnetnuke:dotnetnuke:4.9:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2009-03-05 20:30:00
cvelist
cvelist
CVE-2008-6399
2009-03-05 20:00:00
nvd
nvd
CVE-2008-6399
2009-03-05 20:30:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
71.4%
Related for CVE-2008-6399