CVE-2011-4311

Published Nov 19, 2011

Last updated 13 years ago

Overview

Description: ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote attackers to bypass intended resource restrictions via unspecified vectors.
Source: secalert@redhat.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C38AE3CB-68EB-4912-A511-4A63E8E5A4A0",
            "versionEndIncluding": "4.2.2816"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:2.2.1240:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52AD45F5-445F-4FCB-956A-4CF9D5F40F5C"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:2.3.1374:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "957E93D7-8A99-4833-ACCF-B962F5230521"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.0.1490:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F31881B6-CDE6-4FD1-B478-9E68D12EF7ED"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.1.1557:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D941F016-7159-40F1-9766-DD35BDAFF845"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.2.1651:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94250016-6E5E-4E19-BD3C-582A0C4635DA"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.3.1723:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "758FD1C3-386A-4023-9071-4D586B5CE101"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.4.1794:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17D3EE93-8486-4160-9D48-AE5B59BA4249"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.5.1857:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1EAB3221-8A15-4C92-A43E-9122F067E9B7"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.6.2022:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2450ACA2-D216-4AF1-9578-D602D4901AB8"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.7.2088:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C86694B-12A0-4AA8-899D-F0990EA8C9B9"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.8.2144:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "638866F8-C485-4927-8034-1944779392AC"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:3.9.2269:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60685610-36EC-4388-904C-506A003C819A"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:4.0.2429:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21AD3E99-4807-4568-B68F-A56B3B18547C"
          },
          {
            "criteria": "cpe:2.3:a:montala:resourcespace:4.1.2567:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80269ABE-3407-46AF-A76B-C15893D08073"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References