Lucene search

K

GoogleOSV:GHSA-8W48-M6HX-RJW2

HistoryMay 17, 2022 - 5:37 a.m.

Zope Command Execution Vulnerability

2022-05-1705:37:39

Google

osv.dev

5

7.6 High

AI Score

Confidence

Low

0.969 High

EPSS

Percentile

99.7%

Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the p_ class in OFS/misc_.py and the use of Python modules.

CPENameOperatorVersion
zope2eq2.12.11
zope2eq2.12.18
zope2eq2.13.6
zope2eq2.13.9
zope2eq2.12.12
zope2eq2.12.7
zope2eq2.13.1
zope2eq2.13.5
zope2eq2.12.19
zope2eq2.12.2

Rows per page:

1-10 of 301

References

plone.org/products/plone-hotfix/releases/20110928

plone.org/products/plone/security/advisories/20110928

pypi.python.org/pypi/Products.PloneHotfix20110928/1.0

bugzilla.redhat.com/show_bug.cgi?id=742297

github.com/zopefoundation/Zope

github.com/zopefoundation/Zope/commit/491a583d8c6622b80c75917e5017c4bb4b15e477

github.com/zopefoundation/Zope/commit/6bb2fb3c04a76b00bec9bd7c069733e06fa6ebe9

nvd.nist.gov/vuln/detail/CVE-2011-3587

web.archive.org/web/20111013043934/zope2.zope.org/news/security-vulnerability-announcement-cve-2011-3587

7.6 High

AI Score

Confidence

Low

0.969 High

EPSS

Percentile

99.7%

Related for OSV:GHSA-8W48-M6HX-RJW2

exploitpack1 nvd2 saint4 seebug2 prion2 packetstorm2 d21 checkpoint_advisories1 github2 cvelist2 cve2 canvas1 nessus1 dsquare1 exploitdb1