Lucene search

[email protected]CVE-2009-4162

HistoryOct 03, 2022 - 4:24 p.m.

CVE-2009-4162

2022-10-0316:24:02

[email protected]

web.nvd.nist.gov

cve-2009-4162

nvd

typo3

db integration

wfqbe

vulnerability

local users

arbitrary commands

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Unspecified vulnerability in the DB Integration (wfqbe) extension 1.3.1 and earlier for TYPO3 allows local users to execute arbitrary commands via unspecified vectors.

Affected configurations

NVD

Node

mauro_lorenzuttiwfqbeMatch1.3.1

AND

typo3typo3

CPENameOperatorVersion
mauro_lorenzutti:wfqbemauro lorenzutti wfqbeeq1.3.1

CPE	Name	Operator	Version
mauro_lorenzutti:wfqbe	mauro lorenzutti wfqbe	eq	1.3.1

References

secunia.com/advisories/37551

typo3.org/teams/security/security-bulletins/typo3-sa-2009-017/

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2009-4162

nvd1 cvelist1 prion1