CVE-2012-2747

Опубликовано: 03 июл. 2012

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Unspecified vulnerability in Joomla! 2.5.x before 2.5.5 allows remote attackers to gain privileges via unknown attack vectors related to "Inadequate checking."

Ссылки

http://developer.joomla.org/security/news/470-20120601-core-privilege-escalation
Vendor Advisory
http://osvdb.org/83070
Broken Link
http://secunia.com/advisories/49605
Third Party Advisory
http://www.joomla.org/announcements/release-news/5427-joomla-255-released.html
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/06/19/2
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/54073
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/76415
Third Party Advisory
VDB Entry
http://developer.joomla.org/security/news/470-20120601-core-privilege-escalation
Vendor Advisory
http://osvdb.org/83070
Broken Link
http://secunia.com/advisories/49605
Third Party Advisory
http://www.joomla.org/announcements/release-news/5427-joomla-255-released.html
Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/06/19/2
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/54073
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/76415
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:joomla:joomla\!:2.5.0:-:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.0:beta1:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.0:beta2:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.0:rc1:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.1:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.2:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.3:*:*:*:*:*:*:*

cpe:2.3:a:joomla:joomla\!:2.5.4:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00067

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-36jj-qr3q-4cm4

github

больше 3 лет назад