Описание
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:zope:zope:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.0:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.1:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.2:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.3:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.4:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.5:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.6:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.7:*:*:*:*:*:*:*
cpe:2.3:a:zope:zope:2.8.8:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.0087
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
около 19 лет назад
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.
debian
около 19 лет назад
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 thro ...
EPSS
Процентиль: 73%
0.0087
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other