Lucene search

PRIOn knowledge basePRION:CVE-2013-7301

HistoryFeb 02, 2014 - 12:55 a.m.

Information disclosure

2014-02-0200:55:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

73.7%

JSON

Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.

CPENameOperatorVersion
cantataeq0.8.2
cantataeq1.1.1
cantataeq1.0.0
cantataeq1.0.3
cantataeq0.7.1
cantataeq0.9.1
cantataeq0.9.2
cantataeq0.9.0
cantataeq0.8.1
cantataeq1.1.2

Name	Operator	Version
cantata	eq	0.8.2
cantata	eq	1.1.1
cantata	eq	1.0.0
cantata	eq	1.0.3
cantata	eq	0.7.1
cantata	eq	0.9.1
cantata	eq	0.9.2
cantata	eq	0.9.0
cantata	eq	0.8.1
cantata	eq	1.1.2

Rows per page:

1-10 of 201

References

seclists.org/oss-sec/2014/q1/121

seclists.org/oss-sec/2014/q1/124

code.google.com/p/cantata/issues/detail?id=356

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

73.7%

JSON

Related for PRION:CVE-2013-7301