Описание
Smarty before 3.0.0, when security is enabled, does not prevent access to the (1) dynamic and (2) private object members of an assigned object, which has unspecified impact and remote attack vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| hardy | ignored | end of life |
| karmic | not-affected | uses system smarty |
| lucid | not-affected | uses system smarty |
| maverick | not-affected | uses system smarty |
| natty | not-affected | uses system smarty |
| oneiric | not-affected | uses system smarty |
| precise | not-affected | uses system smarty |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | uses system smarty |
| esm-apps/xenial | not-affected | uses system smarty |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [uses system smarty]] |
| hardy | ignored | end of life |
| karmic | not-affected | uses system smarty |
| lucid | not-affected | uses system smarty |
| maverick | not-affected | uses system smarty |
| natty | not-affected | uses system smarty |
| oneiric | not-affected | uses system smarty |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| hardy | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | ignored | end of life |
Показывать по
Ссылки на источники
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Smarty before 3.0.0, when security is enabled, does not prevent access to the (1) dynamic and (2) private object members of an assigned object, which has unspecified impact and remote attack vectors.
Smarty before 3.0.0, when security is enabled, does not prevent access ...
Smarty before 3.0.0, when security is enabled, does not prevent access to the (1) dynamic and (2) private object members of an assigned object, which has unspecified impact and remote attack vectors.
EPSS
9.3 Critical
CVSS2