admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 17:51:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2009/CVE-2009-41xx/CVE-2009-4109.json

201 lines
7.4 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2009-4109",
"sourceIdentifier": "cve@mitre.org",
"published": "2009-11-29T13:08:29.610",
"lastModified": "2009-11-30T05:00:00.000",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "The install wizard in DotNetNuke 4.0 through 5.1.4 does not prevent anonymous users from accessing functionality related to determination of the need for an upgrade, which allows remote attackers to access version information and possibly other sensitive information."
},
{
"lang": "es",
"value": "El asistente de instalaci\u00f3n en DotNetNuke v4.0 a la v5.1.4, no prev\u00e9 el acceso de usuarios an\u00f3nimos a la funcionalidad relacionada con la necesidad de una actualizaci\u00f3n, lo que permite a atacantes remotos acceder a la informaci\u00f3n de la versi\u00f3n de la aplicaci\u00f3n y posiblemente a otros datos."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "31D0AA24-9FA3-4AFD-920A-295898473918"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "34AF4B04-B86C-4BD0-94D9-3157AC55E542"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6FB3D130-5DC4-4FE6-B178-EF1638E3A43D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "68F28416-0ABF-4B2F-87A4-C4EC4D0CA227"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "F1681BA4-9C05-45DF-B51B-D89633EB0C70"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.5:*:*:*:*:*:*:*",
"matchCriteriaId": "884BA1BF-BD03-4437-A02C-825B59634A76"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C627743E-9B8B-431B-A513-89CBF7C1E742"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "677B54A1-6945-459F-9ADA-D6D9E89F2436"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E6D101EF-4506-45D8-9717-5EE9A99B0A43"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C7059E6A-4A54-4364-8977-400C18905D01"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "92A018EB-3C16-44BB-A872-E80D6F165395"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1285FF8E-EDB0-4C50-815B-DE40B1786601"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "625C6564-F098-4C9B-AFE7-6686275A1016"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6293D07D-4C07-4A5D-9532-455A7D5AA6BA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "250EE0BC-F79D-40D0-A185-8307F82DA8BF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "2902A37C-97AA-42CD-A038-3DA1A6E4653A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "403D90A9-C191-496A-BBB9-4915D39B675D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:4.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6B40DA1D-12CF-4DFF-9364-D60A53ED898D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "102921DE-5513-4BCB-8383-D22A78C59735"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7DC26BE5-265B-455A-83AE-E289A0C79B3F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "DFAD2896-6A9C-4953-8074-E689F359C900"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "74B90994-F7F0-4BC9-99E4-E798B98899AD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "9A6FB531-44C1-4EA1-B69D-0D591673D7C2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dotnetnuke:dotnetnuke:5.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "2B3A0857-2E5D-4BCD-AAE6-D50FCAE6FF67"
}
]
}
]
}
],
"references": [
{
"url": "http://www.dotnetnuke.com/News/SecurityPolicy/securitybulletinno30/tabid/1449/Default.aspx",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/37139",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue Copy Permalink