Lucene search

[email protected]NVD:CVE-2007-4650

HistorySep 04, 2007 - 5:17 p.m.

CVE-2007-4650

2007-09-0417:17:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

0.01

Percentile

84.1%

JSON

Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using “linked items” in WebDAV and (b) Reupload modules.

Affected configurations

Nvd

Node

bharat_medirattagalleryRange≤2.2.2

VendorProductVersionCPE
bharat_medirattagallery*cpe:2.3:a:bharat_mediratta:gallery:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bharat_mediratta	gallery	*	cpe:2.3:a:bharat_mediratta:gallery::::::::

References

bugs.gentoo.org/show_bug.cgi?id=191587

gallery.menalto.com/gallery_2.2.3_released

osvdb.org/41657

osvdb.org/41658

secunia.com/advisories/26716

secunia.com/advisories/26719

secunia.com/advisories/27502

secunia.com/advisories/27594

security.gentoo.org/glsa/glsa-200711-03.xml

www.debian.org/security/2007/dsa-1404

www.securityfocus.com/bid/25580

www.vupen.com/english/advisories/2007/3072

bugzilla.redhat.com/show_bug.cgi?id=267421

www.redhat.com/archives/fedora-package-announce/2007-September/msg00097.html

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.5

Confidence

Low

EPSS

0.01

Percentile

84.1%

JSON

Related for NVD:CVE-2007-4650

freebsd1 nessus4 openvas8 fedora1 gentoo1 cvelist1 debian1 prion1 cve1 ubuntucve1