7.5
CVE-2001-0330
- EPSS 2.06%
- Veröffentlicht 27.06.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:06
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Bugzilla 2.10 allows remote attackers to access sensitive information, including the database username and password, via an HTTP request for the globals.pl file, which is normally returned by the web server without being executed.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.06% | 0.788 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.atstake.com/research/advisories/2001/a043001-1.txt
http://www.securityfocus.com/bid/2671
https://exchange.xforce.ibmcloud.com/vulnerabilities/6489