Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHackeroneCVELIST:CVE-2016-9129
HistoryMar 28, 2017 - 2:46 a.m.

CVE-2016-9129

2017-03-2802:46:00
CWE-203
hackerone
www.cve.org
2

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

49.8%

JSON

Revive Adserver before 3.2.3 suffers from Information Exposure Through Discrepancy. It is possible to check whether or not an email address was associated to one or more user accounts on a target Revive Adserver instance by examining the message printed by the password recovery system. Such information cannot however be used directly to log in to the system, which requires a username.

CNA Affected

[
  {
    "product": "Revive Adserver All versions before 3.2.3",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Revive Adserver All versions before 3.2.3"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
osv 1
openvas 1
cve
cve
CVE-2016-9129
2017-03-28 02:59:00
nvd
nvd
CVE-2016-9129
2017-03-28 02:59:00
prion
prion
Design/Logic Flaw
2017-03-28 02:59:00
osv
osv
CVE-2016-9129
2017-03-28 02:59:00
openvas
openvas
Revive Adserver Multiple Vulnerabilities
2016-10-04 00:00:00

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

49.8%

JSON
Related for CVELIST:CVE-2016-9129
cve1nvd1prion1osv1openvas1