7.5
CVE-2009-1634
- EPSS 7.22%
- Veröffentlicht 26.05.2009 15:30:05
- Zuletzt bearbeitet 16.06.2026 23:07:41
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The WebAccess component in Novell GroupWise 7.x before 7.03 HP3 and 8.x before 8.0 HP2 does not properly implement session management mechanisms, which allows remote attackers to gain access to user accounts via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 7.22% | 0.935 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/35177
http://www.securityfocus.com/bid/35066
http://www.vupen.com/english/advisories/2009/1393
http://www.novell.com/support/viewContent.do?externalId=7003266&sliceId=1
https://bugzilla.novell.com/show_bug.cgi?id=472979
https://exchange.xforce.ibmcloud.com/vulnerabilities/50688