Описание
Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.1 (включая)
Одно из
cpe:2.3:a:craig_drummond:cantata:*:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.8.3.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:craig_drummond:cantata:1.2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00283
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
около 12 лет назад
Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.
debian
около 12 лет назад
Cantata before 1.2.2 does not restrict access to files in the play que ...
github
больше 3 лет назад
Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by reading the songs in the queue.
EPSS
Процентиль: 51%
0.00283
Низкий
5 Medium
CVSS2
Дефекты
CWE-264