5
CVE-2010-3700
- EPSS 0.25%
- Published 29.10.2010 19:00:02
- Last modified 11.04.2025 00:51:21
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter.
Data is provided by the National Vulnerability Database (NVD)
Acegisecurity ≫ Acegi-security Version1.0.0
Acegisecurity ≫ Acegi-security Version1.0.1
Acegisecurity ≫ Acegi-security Version1.0.2
Acegisecurity ≫ Acegi-security Version1.0.3
Acegisecurity ≫ Acegi-security Version1.0.4
Acegisecurity ≫ Acegi-security Version1.0.5
Acegisecurity ≫ Acegi-security Version1.0.6
Acegisecurity ≫ Acegi-security Version1.0.7
VMware ≫ Springsource Spring Security Version2.0.0
VMware ≫ Springsource Spring Security Version2.0.1
VMware ≫ Springsource Spring Security Version2.0.2
VMware ≫ Springsource Spring Security Version2.0.3
VMware ≫ Springsource Spring Security Version2.0.4
VMware ≫ Springsource Spring Security Version2.0.5
VMware ≫ Springsource Spring Security Version3.0.0
VMware ≫ Springsource Spring Security Version3.0.1
VMware ≫ Springsource Spring Security Version3.0.2
VMware ≫ Springsource Spring Security Version3.0.3
Ibm ≫ Websphere Application Server Version6.1
Ibm ≫ Websphere Application Server Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.452 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|