Lucene search

[email protected]CVE-2009-3818

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2009-3818

2022-10-0316:23:55

[email protected]

web.nvd.nist.gov

cve-2009-3818

typo3

freecap

captcha

vulnerability

session handling

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.6%

JSON

Unspecified vulnerability in the session handling feature in freeCap CAPTCHA (sr_freecap) extension 1.2.0 and earlier for TYPO3 has unknown impact and attack vectors.

Affected configurations

NVD

Node

typo3typo3

AND

stanislas_rollandsr_freecapRange≤1.2.0

stanislas_rollandsr_freecapMatch0.1.0

stanislas_rollandsr_freecapMatch0.2.0

stanislas_rollandsr_freecapMatch0.2.2

stanislas_rollandsr_freecapMatch0.2.3

stanislas_rollandsr_freecapMatch0.3.0

stanislas_rollandsr_freecapMatch0.3.1

stanislas_rollandsr_freecapMatch0.3.2

stanislas_rollandsr_freecapMatch0.3.3

stanislas_rollandsr_freecapMatch0.4.0

stanislas_rollandsr_freecapMatch0.4.1

stanislas_rollandsr_freecapMatch0.4.2

stanislas_rollandsr_freecapMatch0.4.3

stanislas_rollandsr_freecapMatch0.4.4

stanislas_rollandsr_freecapMatch0.4.5

stanislas_rollandsr_freecapMatch0.4.6

stanislas_rollandsr_freecapMatch1.0.0

stanislas_rollandsr_freecapMatch1.0.1

stanislas_rollandsr_freecapMatch1.0.2

stanislas_rollandsr_freecapMatch1.0.3

stanislas_rollandsr_freecapMatch1.0.4

stanislas_rollandsr_freecapMatch1.1.0

stanislas_rollandsr_freecapMatch1.1.1

stanislas_rollandsr_freecapMatch1.1.2

CPENameOperatorVersion
stanislas_rolland:sr_freecapstanislas rolland sr freecaple1.2.0
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.1.0
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.2.0
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.2.2
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.2.3
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.3.0
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.3.1
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.3.2
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.3.3
stanislas_rolland:sr_freecapstanislas rolland sr freecapeq0.4.0

CPE	Name	Operator	Version
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	le	1.2.0
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.1.0
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.2.0
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.2.2
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.2.3
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.3.0
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.3.1
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.3.2
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.3.3
stanislas_rolland:sr_freecap	stanislas rolland sr freecap	eq	0.4.0

Rows per page:

1-10 of 241

References

secunia.com/advisories/37094

typo3.org/teams/security/security-bulletins/typo3-sa-2009-014/

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.6%

JSON

Related for CVE-2009-3818

nvd1 cvelist1 prion1