admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-28xx/CVE-2010-2896.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

134 lines
4.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2010-2896",
"sourceIdentifier": "cve@mitre.org",
"published": "2010-07-28T20:00:07.870",
"lastModified": "2024-11-21T01:17:34.963",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "IBM FileNet Content Manager (CM) 4.0.0, 4.0.1, 4.5.0, and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x, which might allow attackers to bypass intended folder permissions via unspecified vectors."
},
{
"lang": "es",
"value": "IBM FileNet Content Manager (CM) v4.0.0, v4.0.1, v4.5.0 y v4.5.1 anterior a FP4 no maneja adecuadamente la configuraci\u00f3n de InheritParentPermissions durante la actualizaci\u00f3n de 3.x, esto puede permitir a los atacantes evitar los permisos de carpeta pretendidos mediante vectores desconocidos."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"baseScore": 4.3,
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:filenet_content_manager:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "18A3291E-2746-40BF-B60A-03EEAAC9BAB7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:filenet_content_manager:4.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0EEDD182-2A22-44AB-A325-57C307819C1C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:filenet_content_manager:4.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2F852D8F-AFB9-44C7-878D-8A9D6279ACE6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:filenet_content_manager:4.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "05F86DAF-332E-4CF1-9D7D-99A8AD10B155"
}
]
}
]
}
],
"references": [
{
"url": "http://secunia.com/advisories/40614",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21441225",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.vupen.com/english/advisories/2010/1847",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/advisories/40614",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21441225",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.vupen.com/english/advisories/2010/1847",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
],
"evaluatorSolution": "Per: http://www-01.ibm.com/support/docview.wss?uid=swg21441225\r\n\r\n'Fix Central can be found at: http://www-933.ibm.com/support/fixcentral/'"
}
Reference in New Issue View Git Blame Copy Permalink