CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Phpbb3 before 3.0.11-4 for Debian GNU/Linux uses world-writable permissions for cache files, which allows local users to modify the file contents via standard filesystem write operations.
Vendor | Product | Version | CPE |
---|---|---|---|
debian | phpbb3 | * | cpe:2.3:a:debian:phpbb3:*:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-1 | cpe:2.3:a:debian:phpbb3:3.0.0-1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-2 | cpe:2.3:a:debian:phpbb3:3.0.0-2:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-b5 | cpe:2.3:a:debian:phpbb3:3.0.0-b5:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc2-1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc2-1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc3-1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc3-1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc4-1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc4-1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc5-1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc5-1:*:*:*:*:*:*:* |
debian | phpbb3 | 3.0.0-rc7-1 | cpe:2.3:a:debian:phpbb3:3.0.0-rc7-1:*:*:*:*:*:*:* |