Lucene search
HistoryFeb 27, 2014 - 8:55 p.m.
CVE-2014-0858
ibm
content navigator
cve-2014-0858
security
access restrictions
deleteaction
url
nvd
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.7%
IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.
Affected configurations
Node
ibmcontent_navigatorMatch2.0.0
ORibmcontent_navigatorMatch2.0.1
ORibmcontent_navigatorMatch2.0.2
Related
nvd
nvd
CVE-2014-0858
2014-02-27 20:55:06
seebug
seebug
IBM Content Navigator่ฎฟ้ฎ็ป่ฟๆผๆด
2014-03-03 00:00:00
prion
prion
Design/Logic Flaw
2014-02-27 20:55:00
ibm
ibm
cvelist
cvelist
CVE-2014-0858
2014-02-27 20:00:00
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.7%
Related for CVE-2014-0858