Lucene search

[email protected]NVD:CVE-2007-3462

HistoryJun 27, 2007 - 6:30 p.m.

CVE-2007-3462

2007-06-2718:30:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.006

Percentile

78.1%

JSON

Cross-site request forgery (CSRF) vulnerability in Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, allows remote attackers to execute commands as arbitrary users, and disable firewalling of the protected network.

Affected configurations

Nvd

Node

sofawaresafe_at_office_500_utmMatchembedded_ngx_7.0.39_ga

VendorProductVersionCPE
sofawaresafe_at_office_500_utmembedded_ngx_7.0.39_gacpe:2.3:h:sofaware:safe_at_office_500_utm:embedded_ngx_7.0.39_ga:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sofaware	safe_at_office_500_utm	embedded_ngx_7.0.39_ga	cpe:2.3:h:sofaware:safe_at_office_500_utm:embedded_ngx_7.0.39_ga:::::::*

References

labs.calyptix.com/CX-2007-04.php

labs.calyptix.com/CX-2007-04.txt

osvdb.org/37644

secunia.com/advisories/25822

www.securityfocus.com/archive/1/472290/100/0/threaded

www.securitytracker.com/id?1018317

www.sofaware.com/supportDownloads.aspx?boneId=182

www.vupen.com/english/advisories/2007/2364

exchange.xforce.ibmcloud.com/vulnerabilities/35093

exchange.xforce.ibmcloud.com/vulnerabilities/35094

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.006

Percentile

78.1%

JSON

Related for NVD:CVE-2007-3462

prion1 cve1 cvelist1