CVE-2011-4030 in CMFEditionsinformazioni

Riassunto

di MITRE

The CMFEditions component 2.x in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2 does not prevent the KwAsAttributes classes from being publishable, which allows remote attackers to access sub-objects via unspecified vectors, a different vulnerability than CVE-2011-3587.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

09/10/2011

Divulgazione

10/10/2011

Moderazione

accettato

Voce

VDB-58990

CPE

pronto

CWE

CWE-264 (confermato)

CVSS

9.8 (VulDB)

EPSS

0.01972

KEV

Attività

molto basso

Settore

Lawfirm, Agriculture, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4030
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4030
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4030/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!