Lucene search

K
prionPRIOn knowledge basePRION:CVE-2006-0153
HistoryJan 10, 2006 - 11:03 a.m.

Authentication flaw

2006-01-1011:03:00
PRIOn knowledge base
www.prio-n.com
1

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.156 Low

EPSS

Percentile

95.9%

427BB 2.2 and 2.2.1 verifies authentication credentials based on the username, authenticated, and usertype cookies, which allows remote attackers to bypass authentication by using a valid username and usertype and setting the authenticated cookie.

CPENameOperatorVersion
fourtwosevenbbeq2.2.1
fourtwosevenbbeq2.2

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.156 Low

EPSS

Percentile

95.9%

Related for PRION:CVE-2006-0153