CVE-2007-2638

{"id": "CVE-2007-2638", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-05-13T23:19:00.000", "references": [{"url": "http://osvdb.org/34774", "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/2696", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/468314/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/23944", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34251", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/34774", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securityreason.com/securityalert/2696", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/468314/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/23944", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34251", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "eFileCabinet 3.3 allows remote attackers to bypass authentication and access restricted portions of the interface via an invalid filecabinetnumber, which can be leveraged to obtain sensitive information or create new data structures."}, {"lang": "es", "value": "eFileCabinet 3.3 permite a atacantes remotos evitar la validaci\u00f3n y porciones acceso restringido de la interfaz a trav\u00e9s de un filecabinetnumber inv\u00e1lido, lo cu\u00e1l podr\u00eda ser utilizado para obtener informaci\u00f3n sensible o crear nuevas estructuras de datos."}], "lastModified": "2024-11-21T00:31:17.423", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:efilecabinet:efilecabinet:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66003C19-7750-47FD-AE9C-86D11744E819", "versionEndIncluding": "3.3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}