CVE-2008-6412 - Unspecified vulnerability in Vignette Content Management 7.3.0.5, 7.3.1, 7.3.1.1, 7.4, and 7.5 allow

CVE-2008-6412

Summary

Unspecified vulnerability in Vignette Content Management 7.3.0.5, 7.3.1, 7.3.1.1, 7.4, and 7.5 allows "low privileged" users to gain administrator privileges via unknown attack vectors.

References

Vulnerable Configurations

cpe:2.3:a:vignette:vignette_content_management:7.3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.3.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.4:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.4:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.5:*:*:*:*:*:*:*
cpe:2.3:a:vignette:vignette_content_management:7.5:*:*:*:*:*:*:*

CVSS

Base:	7.5 (as of 17-08-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bid	31328
confirm	http://dialog.vignette.com/hm?g=1.2jds7.bky8.rs.0.27gqh.htk8&h=1
sectrack	1020910
secunia	31983
vupen	ADV-2008-2662
xf	vcm-unspecified-security-bypass(45312)

Last major update

17-08-2017 - 01:29

Published

06-03-2009 - 11:30

Last modified

17-08-2017 - 01:29