5.3

CVE-2017-7685

Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApacheOpenmeetings Version1.0.0
ApacheOpenmeetings Version2.0
ApacheOpenmeetings Version2.1
ApacheOpenmeetings Version2.1.1
ApacheOpenmeetings Version2.2.0
ApacheOpenmeetings Version3.0.0
ApacheOpenmeetings Version3.0.1
ApacheOpenmeetings Version3.0.2
ApacheOpenmeetings Version3.0.3
ApacheOpenmeetings Version3.0.4
ApacheOpenmeetings Version3.0.5
ApacheOpenmeetings Version3.0.6
ApacheOpenmeetings Version3.0.7
ApacheOpenmeetings Version3.1.0
ApacheOpenmeetings Version3.1.1
ApacheOpenmeetings Version3.1.2
ApacheOpenmeetings Version3.1.3
ApacheOpenmeetings Version3.1.4
ApacheOpenmeetings Version3.1.5
ApacheOpenmeetings Version3.2.0
ApacheOpenmeetings Version3.2.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.86% 0.849
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.3 3.9 1.4
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://markmail.org/message/uxk4bpq35svnyjhb
Third Party Advisory
http://www.securityfocus.com/bid/99592
Third Party Advisory
VDB Entry