Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2016-0956
HistoryFeb 10, 2016 - 8:59 p.m.

CVE-2016-0956

2016-02-1020:59:08
CWE-200
[email protected]
web.nvd.nist.gov
64
apache sling
servlets
post component
cve-2016-0956
adobe experience manager
nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON

The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote attackers to obtain sensitive information via unspecified vectors.

Affected configurations

NVD
Node
apachesling
Node
adobeexperience_managerMatch5.6.1
OR
adobeexperience_managerMatch6.0.0
OR
adobeexperience_managerMatch6.1.0
AND
applemac_os_x
OR
linuxlinux_kernel
OR
microsoftwindows
CPENameOperatorVersion
apache:slingapache slingeq*

Related

packetstorm 1
github 1
vulnerlab 2
exploitpack 1
nvd 1
cvelist 1
osv 1
prion 1
zdt 1
exploitdb 1
openvas 1
nessus 1
rapid7blog 1
packetstorm
packetstorm
Apache Sling Framework 2.3.6 Information Disclosure
2016-02-11 00:00:00
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Apache Sling Servlets Post
2022-05-14 02:47:05
vulnerlab
vulnerlab
Apache Sling Framework v2.3.6 - Information Disclosure
2016-02-10 00:00:00
Apache Sling Framework v2.3.6 - Information Disclosure
2016-02-10 00:00:00
exploitpack
exploitpack
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
nvd
nvd
CVE-2016-0956
2016-02-10 20:59:08
cvelist
cvelist
CVE-2016-0956
2016-02-10 20:00:00
osv
osv
Exposure of Sensitive Information to an Unauthorized Actor in Apache Sling Servlets Post
2022-05-14 02:47:05
prion
prion
Information disclosure
2016-02-10 20:59:00
zdt
zdt
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
exploitdb
exploitdb
Apache Sling Framework (Adobe AEM) 2.3.6 - Information Disclosure
2016-02-10 00:00:00
openvas
openvas
Adobe Experience Manager (AEM) Multiple Vulnerabilities (APSB16-05) - Active Check
2016-02-11 00:00:00
nessus
nessus
Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 Multiple Vulnerabilities (APSB16-05)
2023-09-14 00:00:00
rapid7blog
rapid7blog
NICER Protocol Deep Dive: Internet Exposure of HTTP and HTTPS
2021-01-29 14:20:22

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

High

0.027 Low

EPSS

Percentile

90.6%

JSON
Related for CVE-2016-0956
packetstorm1github1vulnerlab2exploitpack1nvd1cvelist1osv1prion1zdt1exploitdb1openvas1nessus1rapid7blog1