7.5
CVE-2012-3475
- EPSS 0.52%
- Veröffentlicht 12.08.2012 21:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginThe installer in the Ushahidi Platform before 2.5 omits certain calls to the exit function, which allows remote attackers to obtain administrative privileges via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ushahidi ≫ Ushahidi Platform Version <= 2.4.1
Ushahidi ≫ Ushahidi Platform Version1.0
Ushahidi ≫ Ushahidi Platform Version1.2
Ushahidi ≫ Ushahidi Platform Version2.0
Ushahidi ≫ Ushahidi Platform Version2.1
Ushahidi ≫ Ushahidi Platform Version2.2
Ushahidi ≫ Ushahidi Platform Version2.2.1
Ushahidi ≫ Ushahidi Platform Version2.3.1
Ushahidi ≫ Ushahidi Platform Version2.3.2
Ushahidi ≫ Ushahidi Platform Version2.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.52% | 0.641 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|