CVE-2008-0893

EPSS 1.42%
Veröffentlicht 16.04.2008 18:05:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, does not properly restrict access to CGI scripts, which allows remote attackers to perform administrative actions.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Redhat ≫ Directory Server Version8.0 Updateel4

Redhat ≫ Directory Server Version8.0 Updateel5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.42%	0.787

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/29761

Vendor Advisory

http://secunia.com/advisories/29826

http://www.redhat.com/support/errata/RHSA-2008-0201.html

Patch

http://www.securityfocus.com/bid/28802

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.html

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.html

http://www.securitytracker.com/id?1019857

https://bugzilla.redhat.com/show_bug.cgi?id=437320

https://exchange.xforce.ibmcloud.com/vulnerabilities/41843

https://nvd.nist.gov/vuln/detail/CVE-2008-0893

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-0893

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-0893

EUVD