Lucene search
HistoryJan 22, 2014 - 9:55 p.m.
CVE-2014-0807
nvd
cve-2014-0807
lockon ec-cube
data modification
remote attack
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.3%
data/class/pages/shopping/LC_Page_Shopping_Deliv.php in LOCKON EC-CUBE 2.4.4 and earlier, and 2.11.0 through 2.12.2, allows remote attackers to modify data via unspecified vectors.
Affected configurations
Node
lockonec-cubeRange≤2.4.4
ORlockonec-cubeMatch2.4.0
ORlockonec-cubeMatch2.4.0rc1
ORlockonec-cubeMatch2.4.1
ORlockonec-cubeMatch2.4.2
ORlockonec-cubeMatch2.4.3
Node
lockonec-cubeMatch2.11.0
ORlockonec-cubeMatch2.11.0beta
ORlockonec-cubeMatch2.11.0beta2
ORlockonec-cubeMatch2.11.1
ORlockonec-cubeMatch2.11.2
ORlockonec-cubeMatch2.11.3
ORlockonec-cubeMatch2.11.4
ORlockonec-cubeMatch2.11.5
ORlockonec-cubeMatch2.12.0
ORlockonec-cubeMatch2.12.1
ORlockonec-cubeMatch2.12.2
Related
jvn
jvn
JVN#17849447: EC-CUBE vulnerable to information alteration
2014-01-22 00:00:00
cvelist
cvelist
CVE-2014-0807
2014-01-22 21:00:00
nvd
nvd
CVE-2014-0807
2014-01-22 21:55:03
prion
prion
Authentication flaw
2014-01-22 21:55:00
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
6.8 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.3%
Related for CVE-2014-0807