CVE-2018-0573

2018-06-2614:00:00

jpcert

www.cve.org

AI Score

5.6

Confidence

High

EPSS

0.001

Percentile

51.1%

JSON

baserCMS (baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions) allows remote attackers to bypass access restriction for a content to view a file which is uploaded by a site user via unspecified vectors.

CNA Affected

[
  {
    "product": "baserCMS",
    "vendor": "baserCMS Users Community",
    "versions": [
      {
        "status": "affected",
        "version": "(baserCMS 4.1.0.1 and earlier versions, baserCMS 3.0.15 and earlier versions)"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN67881316/index.html

basercms.net/security/JVN67881316