admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2012/CVE-2012-56xx/CVE-2012-5607.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

194 lines
6.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2012-5607",
"sourceIdentifier": "secalert@redhat.com",
"published": "2012-12-18T01:55:07.287",
"lastModified": "2024-11-21T01:44:57.567",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The \"Lost Password\" reset functionality in ownCloud before 4.0.9 and 4.5.0 does not properly check the security token, which allows remote attackers to change an accounts password via unspecified vectors related to a \"Remote Timing Attack.\""
},
{
"lang": "es",
"value": "La funcionalidad de reinicio \"Contrase\u00f1a olvidada\" en ownCloud v4.0.9 y antes de v4.5.0 no comprueba correctamente el token de seguridad, lo que permite a atacantes remotos para cambiar la contrase\u00f1a de las cuentas a trav\u00e9s de vectores no especificados relacionados con un \"Remote Timing Attack\"."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"baseScore": 5.0,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": true,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-255"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.0.8",
"matchCriteriaId": "2AB005B3-22C4-4365-B287-FBF77657DE66"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0A1021FF-2A5A-49AA-A376-09C98FECC519"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:3.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3F6C12F7-5897-4DBB-A9AB-8180101F37C3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:3.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E9CC055C-CFA3-4A23-AF91-83F7F087F282"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:3.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "AA5445B4-9115-4D31-9DF9-E7E30CAF1FFD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8FAE7D90-6190-44E2-B4EA-F47FF3263BE6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C7BAB402-B6A0-4314-A37A-C9465157BF5E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "8A32BED8-F428-44D3-BEAC-E0BB0208B6B6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "F46F53A9-52B2-41D6-859B-9062B1F02B86"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "875B306F-92A2-4360-979E-2B53466A33F0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "6EB01EA3-3071-424F-9586-83CD208D5CAE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4A704201-6D06-4D01-9A28-3D873ABE1AC7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "C1D5E8BD-2264-482E-ABA9-F83D2A13EF88"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:owncloud:owncloud:4.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B362D262-CB7A-4987-AD26-406E20DE9BCD"
}
]
}
]
}
],
"references": [
{
"url": "http://owncloud.org/changelog/",
"source": "secalert@redhat.com"
},
{
"url": "http://owncloud.org/security/advisories/oc-sa-2012-002/",
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2012/11/30/3",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "https://github.com/owncloud/core/commit/99cd922",
"source": "secalert@redhat.com",
"tags": [
"Patch"
]
},
{
"url": "http://owncloud.org/changelog/",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://owncloud.org/security/advisories/oc-sa-2012-002/",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2012/11/30/3",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "https://github.com/owncloud/core/commit/99cd922",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink