9.3
CVE-2011-3587
- EPSS 78.55%
- Veröffentlicht 10.10.2011 10:55:06
- Zuletzt bearbeitet 16.06.2026 23:33:32
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the p_ class in OFS/misc_.py and the use of Python modules.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 78.55% | 0.995 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://plone.org/products/plone-hotfix/releases/20110928
http://plone.org/products/plone-hotfix/releases/20110928/PloneHotfix20110928-1.0.zip
http://plone.org/products/plone/security/advisories/20110928
http://pypi.python.org/pypi/Products.PloneHotfix20110928/1.0
http://secunia.com/advisories/46221
http://secunia.com/advisories/46323
http://zope2.zope.org/news/security-vulnerability-announcement-cve-2011-3587
https://bugzilla.redhat.com/show_bug.cgi?id=742297