Lucene search

[email protected]CVE-2016-3954

HistoryFeb 06, 2018 - 6:29 p.m.

CVE-2016-3954

2018-02-0618:29:00

CWE-200

[email protected]

web.nvd.nist.gov

cve-2016-3954

nvd

web2py

security

remote attack

session_cookie_key

arbitrary code execution

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

7.8 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

71.9%

JSON

web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/simple_examples/status. NOTE: this issue can be leveraged by remote attackers to execute arbitrary code using CVE-2016-3957.

CPENameOperatorVersion
web2py:web2pyweb2pylt2.14.2

CPE	Name	Operator	Version
web2py:web2py	web2py	lt	2.14.2

References

devco.re/blog/2017/01/03/web2py-unserialize-code-execution-CVE-2016-3957/

usn.ubuntu.com/4030-1/

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

7.8 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

71.9%

JSON

Related for CVE-2016-3954

osv6 cvelist2 github1 prion2 ubuntucve2 ubuntu1 openvas1 nessus1 cve1