Lucene search

[email protected]NVD:CVE-2010-3925

HistoryJan 13, 2011 - 7:00 p.m.

CVE-2010-3925

2011-01-1319:00:02

CWE-255

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

77.6%

JSON

Contents-Mall before 15 does not properly handle passwords, which allows remote attackers to discover the administrative password, and consequently obtain sensitive information or modify data, via unspecified vectors.

Affected configurations

Nvd

Node

wb-icontents-mallRange≤14.00

VendorProductVersionCPE
wb-icontents-mall*cpe:2.3:a:wb-i:contents-mall:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wb-i	contents-mall	*	cpe:2.3:a:wb-i:contents-mall::::::::

References

jvn.jp/en/jp/JVN53293565/index.html

jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000001.html

mag.wb-i.net/2010_05_07.html

osvdb.org/70445

secunia.com/advisories/42950

exchange.xforce.ibmcloud.com/vulnerabilities/64835

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.006

Percentile

77.6%

JSON

Related for NVD:CVE-2010-3925

cvelist1 prion1 jvn1 cve1