CVE-2009-2701
Published Sep 8, 2009
Last updated 15 years ago
Overview
- Description
- Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionality in Zope Object Database (ZODB) 3.8 before 3.8.3 and 3.9.x before 3.9.0c2, when certain ZEO database sharing and blob support are enabled, allows remote authenticated users to read or delete arbitrary files via unknown vectors.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6
- Impact score
- 6.4
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:zope:zodb:3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FF49B253-411F-4E83-93B3-556783B73965"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.8.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8568BD1E-839A-4C78-840D-47807D207C6F"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "552E429F-964F-4BF8-B974-C4C59EA7871F"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "204FA56B-576D-4274-B17C-6AC4FC1EB58B"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C5CCCAA-83AD-4CD6-B7FD-46809B786395"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0b1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F38F2B2-E061-4D77-9A88-1C432F31FAFA"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0b2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFA88DF5-7A25-4187-8B9D-567B0279FEAD"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0b3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DCFE0BF9-0AC2-4461-BAAE-BDE91A830788"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0b4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EF8EA11C-98BD-419F-9817-4071B287F87B"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0b5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "283DC1FE-6F98-4FFA-A17F-6277AB9815C9"
},
{
"criteria": "cpe:2.3:a:zope:zodb:3.9.0c1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A991E3D-03E9-4B2F-90FB-0B308D142B20"
}
],
"operator": "OR"
}
]
}
]