Lucene search
HistorySep 22, 2008 - 6:52 p.m.
CVE-2008-4164
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
68.7%
cron.php in MemHT Portal 3.9.0 and earlier allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message.
Affected configurations
Node
memhtmemht_portalRange≤3.9.0
ORmemhtmemht_portalMatch3.1
ORmemhtmemht_portalMatch3.4
ORmemhtmemht_portalMatch3.4.5
ORmemhtmemht_portalMatch3.6.0
ORmemhtmemht_portalMatch3.8.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| memht | memht_portal | * | cpe:2.3:a:memht:memht_portal:*:*:*:*:*:*:*:* |
| memht | memht_portal | 3.1 | cpe:2.3:a:memht:memht_portal:3.1:*:*:*:*:*:*:* |
| memht | memht_portal | 3.4 | cpe:2.3:a:memht:memht_portal:3.4:*:*:*:*:*:*:* |
| memht | memht_portal | 3.4.5 | cpe:2.3:a:memht:memht_portal:3.4.5:*:*:*:*:*:*:* |
| memht | memht_portal | 3.6.0 | cpe:2.3:a:memht:memht_portal:3.6.0:*:*:*:*:*:*:* |
| memht | memht_portal | 3.8.5 | cpe:2.3:a:memht:memht_portal:3.8.5:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-4164
2008-09-22 17:00:00
prion
prion
Information disclosure
2008-09-22 18:52:00
cve
cve
CVE-2008-4164
2008-09-22 18:52:13
exploitdb
exploitdb
MemHT Portal 3.9.0 - Remote Create Shell
2008-09-06 00:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
68.7%
Related for NVD:CVE-2008-4164