Lucene search

MitreCVE-2001-1361

HistoryJun 11, 2002 - 4:00 a.m.

CVE-2001-1361

2002-06-1104:00:00

mitre

web.nvd.nist.gov

cve-2001-1361

twig 2.7.1

vulnerability

security rights

mailto links

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.006

Percentile

78.8%

JSON

Vulnerability in The Web Information Gateway (TWIG) 2.7.1, possibly related to incorrect security rights and/or the generation of mailto links.

Affected configurations

Nvd

Node

twig_development_teamtwigRange≤2.7.1

VendorProductVersionCPE
twig_development_teamtwig*cpe:2.3:a:twig_development_team:twig:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
twig_development_team	twig	*	cpe:2.3:a:twig_development_team:twig::::::::

References

archives.neohapsis.com/archives/vulnwatch/2001-q3/0005.html

twig.screwdriver.net/file.php3?file=CHANGELOG

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.006

Percentile

78.8%

JSON

Related for CVE-2001-1361