CVE-2012-2368

Опубликовано: 13 авг. 2012

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Bytemark Symbiosis before Revision 1322 does not properly validate passwords, which allows remote attackers to gain access to email accounts via an arbitrary password.

Ссылки

http://secunia.com/advisories/48993
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/05/14/1
http://www.openwall.com/lists/oss-security/2012/05/14/3
https://projects.bytemark.co.uk/projects/symbiosis/repository/diff?rev=1327&rev_to=1322
Exploit
Patch
http://secunia.com/advisories/48993
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/05/14/1
http://www.openwall.com/lists/oss-security/2012/05/14/3
https://projects.bytemark.co.uk/projects/symbiosis/repository/diff?rev=1327&rev_to=1322
Exploit
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bytemark:symbiosis:*:*:*:*:*:*:*:*

Версия до 1321 (включая)

EPSS

Процентиль: 55%

0.00319

Низкий

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-77mf-7fg8-93v3

github

больше 3 лет назад