2.1
CVE-2008-4807
- EPSS 0.3%
- Veröffentlicht 31.10.2008 18:09:08
- Zuletzt bearbeitet 16.06.2026 22:58:34
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IBM Lotus Connections 2.x before 2.0.1 stores the password for the administrative user in the trace.log file, which allows local users to obtain sensitive information by reading this file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Lotus Connections Version <= 2.0
Ibm ≫ Lotus Connections Version1.0.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.214 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
http://secunia.com/advisories/32466
http://www-01.ibm.com/support/docview.wss?uid=swg27014008
http://www.securityfocus.com/bid/31989
https://exchange.xforce.ibmcloud.com/vulnerabilities/46213