CVE-2011-3587

EPSS 90.59%
Veröffentlicht 10.10.2011 10:55:06
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the p_ class in OFS/misc_.py and the use of Python modules.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Plone ≫ Plone Version4.0

Plone ≫ Plone Version4.0.1

Plone ≫ Plone Version4.0.2

Plone ≫ Plone Version4.0.3

Plone ≫ Plone Version4.0.4

Plone ≫ Plone Version4.0.5

Plone ≫ Plone Version4.0.6.1

Plone ≫ Plone Version4.0.7

Plone ≫ Plone Version4.0.8

Plone ≫ Plone Version4.0.9

Plone ≫ Plone Version4.1

Plone ≫ Plone Version4.2

Plone ≫ Plone Version4.2a1

Plone ≫ Plone Version4.2a2

Zope ≫ Zope Version2.12.0

Zope ≫ Zope Version2.12.0 Updatea1

Zope ≫ Zope Version2.12.0 Updatea2

Zope ≫ Zope Version2.12.0 Updatea3

Zope ≫ Zope Version2.12.0 Updatea4

Zope ≫ Zope Version2.12.0 Updateb1

Zope ≫ Zope Version2.12.0 Updateb2

Zope ≫ Zope Version2.12.0 Updateb3

Zope ≫ Zope Version2.12.0 Updateb4

Zope ≫ Zope Version2.12.1

Zope ≫ Zope Version2.12.2

Zope ≫ Zope Version2.12.3

Zope ≫ Zope Version2.12.4

Zope ≫ Zope Version2.12.5

Zope ≫ Zope Version2.12.6

Zope ≫ Zope Version2.12.7

Zope ≫ Zope Version2.12.8

Zope ≫ Zope Version2.12.9

Zope ≫ Zope Version2.12.10

Zope ≫ Zope Version2.12.11

Zope ≫ Zope Version2.12.12

Zope ≫ Zope Version2.12.13

Zope ≫ Zope Version2.12.14

Zope ≫ Zope Version2.12.15

Zope ≫ Zope Version2.12.16

Zope ≫ Zope Version2.12.17

Zope ≫ Zope Version2.12.18

Zope ≫ Zope Version2.12.19

Zope ≫ Zope Version2.12.20

Zope ≫ Zope Version2.13.0

Zope ≫ Zope Version2.13.0 Updatea1

Zope ≫ Zope Version2.13.0 Updatea2

Zope ≫ Zope Version2.13.0 Updatea3

Zope ≫ Zope Version2.13.0 Updatea4

Zope ≫ Zope Version2.13.0 Updateb1

Zope ≫ Zope Version2.13.0 Updatec1

Zope ≫ Zope Version2.13.1

Zope ≫ Zope Version2.13.2

Zope ≫ Zope Version2.13.3

Zope ≫ Zope Version2.13.4

Zope ≫ Zope Version2.13.5

Zope ≫ Zope Version2.13.6

Zope ≫ Zope Version2.13.7

Zope ≫ Zope Version2.13.8

Zope ≫ Zope Version2.13.9

Zope ≫ Zope Version2.13.10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	90.59%	0.995

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://plone.org/products/plone-hotfix/releases/20110928

Patch

http://plone.org/products/plone-hotfix/releases/20110928/PloneHotfix20110928-1.0.zip

Patch

http://plone.org/products/plone/security/advisories/20110928

Patch

Vendor Advisory

http://pypi.python.org/pypi/Products.PloneHotfix20110928/1.0

Patch

http://secunia.com/advisories/46221

Vendor Advisory

http://secunia.com/advisories/46323

http://zope2.zope.org/news/security-vulnerability-announcement-cve-2011-3587

Patch

https://bugzilla.redhat.com/show_bug.cgi?id=742297

Patch

https://nvd.nist.gov/vuln/detail/CVE-2011-3587

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-3587

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-3587

EUVD