CVE-2011-1950

EPSS 0.76%
Published 06.06.2011 19:55:02
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Plone ≫ Plone Version4.0

Plone ≫ Plone Version4.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.76%	0.723

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	8	4.9	AV:N/AC:L/Au:S/C:N/I:P/A:P

http://secunia.com/advisories/44775

Vendor Advisory

http://securityreason.com/securityalert/8269

http://www.securityfocus.com/archive/1/518155/100/0/threaded

http://www.securityfocus.com/bid/48005

http://osvdb.org/72729

http://plone.org/products/plone/security/advisories/CVE-2011-1950

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/67695

https://nvd.nist.gov/vuln/detail/CVE-2011-1950

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-1950

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-1950

EUVD