mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
176 lines
6.1 KiB
JSON
176 lines
6.1 KiB
JSON
{
|
|
"id": "CVE-2007-6487",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2007-12-20T20:46:00.000",
|
|
"lastModified": "2017-08-08T01:29:11.227",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Unspecified vulnerability in Plain Black WebGUI 7.4.0 through 7.4.17 allows remote authenticated users with Secondary Admin privileges to create Admin accounts, a different vulnerability than CVE-2006-0680."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Vulnerabilidad no especificada en Plain Black WebGUI 7.4.0 hasta el 7.4.17 permite a usuarios remotos validados con privilegios de administrador secundario crear cuentas de administrador, una vulnerabilidad diferente que la CVE-2006-0680."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:N",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "MEDIUM",
|
|
"authentication": "SINGLE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "NONE",
|
|
"baseScore": 4.9
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 6.8,
|
|
"impactScore": 4.9,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-264"
|
|
},
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-noinfo"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "43ABCB82-EAD6-40EA-9908-7FFC9D2A679D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4AF47F61-54B5-49B9-B662-0BBB300010FC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "22912CC8-37FD-4CD4-9863-742E01D13CCF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7D37CA1B-A946-43A2-8BBD-851E3CCF2168"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "84050450-22FC-4024-AC68-DF85AE5DB856"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "12019AA7-13D8-4605-AC83-D45AF464EA2C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4338C4DC-D922-4406-8CB1-58E3E6F0305F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "74D2D2B4-A394-4706-AA01-7E48A5E81D3F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "6B89ADF2-4EA6-4517-AFD6-2CCF360D7B6C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.9:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3885809B-6D22-489B-B72C-65D054ACD771"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "D4A64839-0089-49D5-8427-8EA11A1609E9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.11:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B2300F66-A00A-4BC9-977B-962FEDD8451A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.12:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4A1C1E8C-B672-4458-A391-B3BA8CD65C0D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.13:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3EA49E7B-052A-4713-95B2-30BAC0AF2E42"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.14:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2BF59EFE-5C3B-4C93-B793-CEBAFFC688D9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.15:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BECD0D2B-5985-465D-AFBC-A101D0A623C4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.16:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9A83FE04-A9BA-4981-9A12-C2E139E66644"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:7.4.17:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "864108B3-8613-4804-921F-42FC95E80A40"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://www.plainblack.com/bugs/tracker/secondary-admin-can-create-user-with-admin-privilege",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.plainblack.com/getwebgui/advisories/webgui-7_4_18-stable-released/",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39041",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |