Lucene search
MitreCVE-2005-2286HistoryJul 18, 2005 - 4:00 a.m.
CVE-2005-2286
2005-07-1804:00:00
mitre
web.nvd.nist.gov
27
cve-2005-2286
webeoc
authorization
vulnerability
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
High
EPSS
0.006
Percentile
77.8%
WebEOC before 6.0.2 does not properly check user authorization, which allows remote attackers to gain privileges via a direct request to a resource.
Affected configurations
Node
esi_productswebeocRange≤6.0.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| esi_products | webeoc | * | cpe:2.3:a:esi_products:webeoc:*:*:*:*:*:*:*:* |
Related
cert
cert
WebEOC privileges are based on client-side authorization
2005-07-13 00:00:00
nvd
nvd
CVE-2005-2286
2005-07-18 04:00:00
cvelist
cvelist
CVE-2005-2286
2005-07-17 04:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
High
EPSS
0.006
Percentile
77.8%
Related for CVE-2005-2286