Lucene search

K
cve[email protected]CVE-2009-1610
HistoryMay 11, 2009 - 8:00 p.m.

CVE-2009-1610

2009-05-1120:00:00
CWE-264
web.nvd.nist.gov
18
cve-2009-1610
nvd
job script job board software
remote attackers
administrator privileges

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.05

Percentile

92.9%

admin/changepassword.php in Job Script Job Board Software 2.0 allows remote attackers to change the administrator password and gain administrator privileges via a direct request.

Affected configurations

NVD
Node
jobscriptjob_script_job_board_softwareMatch2.0
VendorProductVersionCPE
jobscriptjob_script_job_board_software2.0cpe:/a:jobscript:job_script_job_board_software:2.0:::

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.2

Confidence

Low

EPSS

0.05

Percentile

92.9%

Related for CVE-2009-1610