admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-12-30 15:16:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2012/CVE-2012-34xx/CVE-2012-3473.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

140 lines
4.6 KiB
JSON
Raw Blame History

{
"id": "CVE-2012-3473",
"sourceIdentifier": "secalert@redhat.com",
"published": "2012-08-12T21:55:01.590",
"lastModified": "2012-08-13T17:54:29.490",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "The (1) reports API and (2) administration feature in the comments API in the Ushahidi Platform before 2.5 do not require authentication, which allows remote attackers to generate reports and organize comments via API functions."
},
{
"lang": "es",
"value": "El (1) Informe de la API y (2) la caracter\u00edstica de administraci\u00f3n de la API de comentarios en la plataforma de Ushahidi anterior a v2.5, no requieren de autenticaci\u00f3n, lo que permite a atacantes remotos generar informes y organizar los comentarios a trav\u00e9s de funciones de la API."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 6.4
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 4.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:*:*:*:*:*:*:*:*",
"versionEndIncluding": "2.4.1",
"matchCriteriaId": "984B26E4-C672-46DF-B26B-8CAAEDBDFEB0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "86468BDD-17C2-49CC-A488-F38CC8630979"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E8EBC5A6-4FB0-4385-8299-5D6298977534"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "826225E4-F4F8-4FB6-AFAF-23CD6720CE5E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6754F1ED-E827-433C-8F50-71F04293EEB1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7B1BC250-09BC-4051-ABEE-8B8FE1558279"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5D260CD2-5483-48D2-87B9-C0298F5F2B23"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "489F7397-CF33-42C5-AF46-956D5692C6D1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B1C84D59-409A-4E73-A65A-8B12594B61DF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ushahidi:ushahidi_platform:2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "8A004E65-AFA7-4551-BA2B-8EF9450B0684"
}
]
}
]
}
],
"references": [
{
"url": "http://openwall.com/lists/oss-security/2012/08/09/5",
"source": "secalert@redhat.com"
},
{
"url": "https://github.com/ushahidi/Ushahidi_Web/commit/13ca6f4",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Patch"
]
},
{
"url": "https://github.com/ushahidi/Ushahidi_Web/commit/f67f4ad",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink