nvd-json-data-feeds/CVE-2008/CVE-2008-34xx/CVE-2008-3425.json

{
  "id": "CVE-2008-3425",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2008-07-31T22:41:00.000",
  "lastModified": "2017-08-08T01:31:52.577",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Sun Java System Web Server 7.0 plugin in Sun N1 Service Provisioning System (SPS) 5.2 and 6.0 allows remote authenticated SPS users to gain administrative access to the web server via unknown attack vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad sin especificar en el Plugin Sun Java System Web Server 7.0 de Sun N1 Service Provisioning System (SPS) 5.2 y 6.0, permite a los usuarios remotos autenticados de SPS obtener acceso administrativo al web server a trav\u00e9s de vectores de ataque desconocidos."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.5
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-287"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:sun:java_system_web_server_plugin:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "09517A56-F177-4B76-A07A-F5B3D9331E08"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:sun:n1_service_provisioning_system:5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5AA7BB07-DB3E-4DA0-A2CE-9B10230ADD3B"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:sun:n1_service_provisioning_system:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D002A0B-1406-4A21-A0E8-D5B3D6B0AD7E"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239566-1",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securityfocus.com/bid/30451",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securitytracker.com/id?1020608",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2008/2261/references",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44114",
      "source": "cve@mitre.org"
    }
  ]
}