CVE-2015-1306

Published Jan 22, 2015
Last updated 3 months ago
CVSS info 5.0
Overview

Description: The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.
Source: security@debian.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses

nvd@nist.gov: CWE-200
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB4BF564-2AE0-4DCE-B331-873E8480C965"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2BB62E4-8207-4344-87CE-FB916E7ECA90"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "304DCEDD-661D-400A-94AB-B0DB20843327"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05707525-5CD4-49DA-B137-D6F3F793BB40"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB1AF942-E11C-4FF2-863E-E1C47D76D485"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01016580-A947-4DE4-9033-4697CE9AF12A"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5F00F31-CA66-43E8-8FE8-3DE0AC483C6B"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "551375FB-45DB-4CC1-BDFC-E95F2795B6E7"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73C4A58F-D1D0-4F90-9A67-DB72B10347F7"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F5FF29A-5032-4AB4-B5BF-750B384A3253"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9A7F6F1-04A0-43CA-98F8-48F5511DFA89"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE3806CA-EFF4-4DC1-827D-D720155231FB"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D74B084-02D3-4410-85BA-9C624A29BFC6"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81F89FD3-5FF5-498A-8909-E31D62AB42B8"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB7F80BB-388F-41A7-BCD2-46EA20DC2E6B"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5CB2B7F-325F-489D-98DF-89D2173EF676"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C251761-00A7-4C37-A9DC-E34F4BC40208"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76A7EE36-064D-4498-AC81-349CE832C03A"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0560EDE9-268B-45F0-A3F0-88781EA52A7A"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38AD95A8-6074-43ED-806F-E1512A4ED2D1"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DED874B0-E182-455C-BED7-E15751DA4148"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C89CA1F-4352-45C2-B8AE-7C18EB5A4145"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C52EAD2-7F18-4431-AF5B-05BE52D5E2DB"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BB42670-39BD-4AEC-BF49-EBD4AD75404A"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAAFD5F8-2656-4944-A359-8163CBD58181"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E139BC3-D07E-42A2-B2D8-39143F3DFACC"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BCBDA07-5C4E-4584-A2FB-D681CBD4F52F"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA67608D-8D20-4A72-83F8-A28032C3C840"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1EA5703-FF75-497D-8F88-8BD98A48FF81"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F2C2D97-7439-4A3D-B9AE-C6990D78FAB0"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20F272D3-3486-41B5-BB33-92C5ABE9B3B9"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7A420CA-4F90-4CCF-BF0A-6AC14041E659"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DF29DFE-7741-4BEA-8BA4-CE07D435E2FB"
          },
          {
            "criteria": "cpe:2.3:a:sympa:sympa:6.1.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D034E88-50F5-469F-BEF2-AC25C43FDDB9"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
