admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2010/CVE-2010-38xx/CVE-2010-3897.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

134 lines
4.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2010-3897",
"sourceIdentifier": "cve@mitre.org",
"published": "2010-11-12T22:00:02.327",
"lastModified": "2024-11-21T01:19:51.263",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x and 9.x includes the administrator password in the HTML source code, which might allow remote attackers to obtain sensitive information by leveraging read access to this file."
},
{
"lang": "es",
"value": "ESSearchApplication/palette.do en IBM OmniFind Enterprise Edition v8.x y v9.x incluye el password de administrador en el c\u00f3digo fuente HTML, lo que puede permitir a atacantes remotos obtener informaci\u00f3n sensible aprovechando la lectura de acceso a dicho archivo. \r\n"
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"baseScore": 5.0,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-255"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:omnifind:8.0:-:enterprise:*:*:*:*:*",
"matchCriteriaId": "96D7BDA2-53EE-44A5-BA8E-DC1224B8B8E0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:omnifind:8.4:-:enterprise:*:*:*:*:*",
"matchCriteriaId": "C73CA22A-FD69-43A1-AFC8-03A82D971AB2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:omnifind:8.5:-:enterprise:*:*:*:*:*",
"matchCriteriaId": "6929217A-6689-460E-88AC-919B26A5C328"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:omnifind:9.0:-:enterprise:*:*:*:*:*",
"matchCriteriaId": "C955D88D-7E06-43EF-B7F8-5B059519E01B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:omnifind:9.1:-:enterprise:*:*:*:*:*",
"matchCriteriaId": "8447721A-AE84-4AD5-A15A-51248887B65E"
}
]
}
]
}
],
"references": [
{
"url": "http://security.fatihkilic.de/advisory/fkilic-sa-2010-ibm-omnifind.txt",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/archive/1/514688/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/44740",
"source": "cve@mitre.org"
},
{
"url": "http://www.vupen.com/english/advisories/2010/2933",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://security.fatihkilic.de/advisory/fkilic-sa-2010-ibm-omnifind.txt",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/archive/1/514688/100/0/threaded",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/bid/44740",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.vupen.com/english/advisories/2010/2933",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink