CVE-2008-0893

EPSS 1.42%
Published 16.04.2008 18:05:00
Last modified 09.04.2025 00:30:58
Source secalert@redhat.com
Teams watchlist Login
Open Login

Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, does not properly restrict access to CGI scripts, which allows remote attackers to perform administrative actions.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Redhat ≫ Directory Server Version8.0 Updateel4

Redhat ≫ Directory Server Version8.0 Updateel5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.42%	0.787

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/29761

Vendor Advisory

http://secunia.com/advisories/29826

http://www.redhat.com/support/errata/RHSA-2008-0201.html

Patch

http://www.securityfocus.com/bid/28802

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html

http://www.securitytracker.com/id?1019857

https://bugzilla.redhat.com/show_bug.cgi?id=437320

https://exchange.xforce.ibmcloud.com/vulnerabilities/41843

https://nvd.nist.gov/vuln/detail/CVE-2008-0893

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0893

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0893

EUVD