Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-0540
HistoryJun 17, 2010 - 4:30 p.m.

CVE-2010-0540

2010-06-1716:30:01
CWE-352
[email protected]
web.nvd.nist.gov
7

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

8.5

Confidence

High

EPSS

0.003

Percentile

71.3%

JSON

Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings.

Affected configurations

Nvd
Node
applemac_os_xMatch10.5.8
OR
applemac_os_xMatch10.6.0
OR
applemac_os_xMatch10.6.1
OR
applemac_os_xMatch10.6.2
OR
applemac_os_xMatch10.6.3
OR
applemac_os_x_serverMatch10.5.8
OR
applemac_os_x_serverMatch10.6.0
OR
applemac_os_x_serverMatch10.6.1
OR
applemac_os_x_serverMatch10.6.2
OR
applemac_os_x_serverMatch10.6.3
VendorProductVersionCPE
applemac_os_x10.5.8cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
applemac_os_x10.6.0cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
applemac_os_x10.6.1cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
applemac_os_x10.6.2cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
applemac_os_x10.6.3cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
applemac_os_x_server10.5.8cpe:2.3:o:apple:mac_os_x_server:10.5.8:*:*:*:*:*:*:*
applemac_os_x_server10.6.0cpe:2.3:o:apple:mac_os_x_server:10.6.0:*:*:*:*:*:*:*
applemac_os_x_server10.6.1cpe:2.3:o:apple:mac_os_x_server:10.6.1:*:*:*:*:*:*:*
applemac_os_x_server10.6.2cpe:2.3:o:apple:mac_os_x_server:10.6.2:*:*:*:*:*:*:*
applemac_os_x_server10.6.3cpe:2.3:o:apple:mac_os_x_server:10.6.3:*:*:*:*:*:*:*

Related

debiancve 1
ubuntucve 1
veracode 1
cvelist 1
cve 1
prion 1
openvas 31
nessus 19
oraclelinux 1
centos 1
ubuntu 1
slackware 1
redhat 1
fedora 5
osv 1
debian 1
gentoo 1
debiancve
debiancve
CVE-2010-0540
2010-06-17 16:30:01
ubuntucve
ubuntucve
CVE-2010-0540
2010-06-17 00:00:00
veracode
veracode
Cross-site Request Forgery (CSRF)
2020-04-10 00:44:30
cvelist
cvelist
CVE-2010-0540
2010-06-17 16:00:00
cve
cve
CVE-2010-0540
2010-06-17 16:30:01
prion
prion
Cross site request forgery (csrf)
2010-06-17 16:30:00
openvas
openvas
Mandriva Update for cups MDVSA-2010:233 (cups)
2010-11-23 00:00:00
Mandriva Update for cups MDVSA-2010:233 (cups)
2010-11-23 00:00:00
CUPS < 1.4.4 Multiple Vulnerabilities
2010-06-22 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : cups (MDVSA-2010:233)
2010-11-16 00:00:00
RHEL 3 / 4 / 5 : cups (RHSA-2010:0490)
2010-06-18 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : cups, cupsys vulnerabilities (USN-952-1)
2010-06-22 00:00:00
oraclelinux
oraclelinux
cups security update
2010-06-17 00:00:00
centos
centos
cups security update
2010-06-19 23:35:01
ubuntu
ubuntu
CUPS vulnerabilities
2010-06-21 00:00:00
slackware
slackware
[slackware-security] cups
2010-06-25 18:33:46
redhat
redhat
(RHSA-2010:0490) Important: cups security update
2010-06-17 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: cups-1.4.4-5.fc13
2010-07-01 18:44:56
[SECURITY] Fedora 12 Update: cups-1.4.4-5.fc12
2010-07-27 02:46:22
[SECURITY] Fedora 11 Update: cups-1.4.4-4.fc11
2010-06-25 18:10:49
osv
osv
cups - several
2011-03-02 00:00:00
debian
debian
[SECURITY] [DSA 2176-1] cups security update
2011-03-01 23:31:10
gentoo
gentoo
CUPS: Multiple vulnerabilities
2012-07-09 00:00:00

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

8.5

Confidence

High

EPSS

0.003

Percentile

71.3%

JSON
Related for NVD:CVE-2010-0540
debiancve1ubuntucve1veracode1cvelist1cve1prion1openvas31nessus19oraclelinux1centos1ubuntu1slackware1redhat1fedora5osv1debian1gentoo1