Lucene search

[email protected]NVD:CVE-2006-3836

HistoryJul 25, 2006 - 1:22 p.m.

CVE-2006-3836

2006-07-2513:22:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Directory traversal vulnerability in index.php in UNIDOmedia Chameleon LE 1.203 and earlier, and possibly Chameleon PRO, allows remote attackers to read arbitrary files via the rmid parameter.

Affected configurations

Nvd

Node

unidomediachameleon_leRange≤1.203

VendorProductVersionCPE
unidomediachameleon_le*cpe:2.3:a:unidomedia:chameleon_le:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
unidomedia	chameleon_le	*	cpe:2.3:a:unidomedia:chameleon_le::::::::

References

secunia.com/advisories/21156

securityreason.com/securityalert/1280

www.securityfocus.com/archive/1/440765/100/0/threaded

www.securityfocus.com/bid/19107

www.vupen.com/english/advisories/2006/2948

exchange.xforce.ibmcloud.com/vulnerabilities/27898

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.017

Percentile

87.9%

JSON

Related for NVD:CVE-2006-3836

cve1 cvelist1 exploitdb1