Design/Logic Flaw

2007-03-3010:19:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

CruiseWorks 1.09e and earlier does not properly restrict user access to certain privileged actions, which allows local users to change the configuration or have other unspecified impact. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
cruiseworkseq<= 1.9e

CPE	Name	Operator	Version
	cruiseworks	eq	<= 1.9e

References

jvn.jp/jp/JVN%2373258608/index.html

osvdb.org/34543

secunia.com/advisories/24674

www.kynos.co.jp/cws-support/index.html

www.securityfocus.com/bid/23198

www.vupen.com/english/advisories/2007/1163

exchange.xforce.ibmcloud.com/vulnerabilities/33323