Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2011:0393
HistoryMar 28, 2011 - 12:00 a.m.

(RHSA-2011:0393) Important: conga security update

2011-03-2800:00:00
access.redhat.com
12

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

87.2%

JSON

The conga packages provide a web-based administration tool for remote
cluster and storage management.

A privilege escalation flaw was found in luci, the Conga web-based
administration application. A remote attacker could possibly use this flaw
to obtain administrative access, allowing them to read, create, or modify
the content of the luci application. (CVE-2011-0720)

Users of Conga are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue. After installing the
updated packages, luci must be restarted (“service luci restart”) for the
update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat4x86_64luci< 0.11.2-4.el4.2luci-0.11.2-4.el4.2.x86_64.rpm
RedHat4x86_64ricci< 0.11.2-4.el4.2ricci-0.11.2-4.el4.2.x86_64.rpm

Related

nessus 7
osv 2
freebsd 1
openvas 7
prion 2
oraclelinux 1
centos 1
redhat 1
github 2
cvelist 2
cve 2
nessus
nessus
Oracle Linux 5 : conga (ELSA-2011-0394)
2013-07-12 00:00:00
Plone Security Bypass
2011-04-25 00:00:00
CentOS 5 : conga (CESA-2011:0394)
2011-04-21 00:00:00
osv
osv
PYSEC-2011-13
2011-02-03 17:00:00
High severity vulnerability that affects Plone and Zope2
2018-07-23 19:52:02
freebsd
freebsd
plone -- Remote Security Bypass
2011-02-02 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-0394)
2015-10-06 00:00:00
FreeBSD Ports: plone
2011-03-05 00:00:00
FreeBSD Ports: plone
2011-03-05 00:00:00
prion
prion
Sql injection
2011-02-03 17:00:00
Spoofing
2011-07-19 20:55:00
oraclelinux
oraclelinux
conga security update
2011-03-28 00:00:00
centos
centos
luci, ricci security update
2011-04-20 16:13:40
redhat
redhat
(RHSA-2011:0394) Important: conga security update
2011-03-28 00:00:00
github
github
Plone Privilege Escalation Vulnerability
2022-05-17 02:01:56
High severity vulnerability that affects Plone and Zope2
2018-07-23 19:52:02
cvelist
cvelist
CVE-2011-0720
2011-02-03 16:00:00
CVE-2011-2528
2011-07-19 20:00:00
cve
cve
CVE-2011-0720
2011-02-03 17:00:00
CVE-2011-2528
2011-07-19 20:55:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

87.2%

JSON
Related for RHSA-2011:0393
nessus7osv2freebsd1openvas7prion2oraclelinux1centos1redhat1github2cvelist2cve2