CVE-2024-8571

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

08/09/2024

Last modified:

11/09/2024

Description

A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. It has been classified as problematic. This affects an unknown part of the file roll_cms/roll_cms/views.py. The manipulation leads to information exposure through error message. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

Impact

Vector 3.x

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS v3.1 Severity and Metrics:

Base Score: 5.30 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): Low
Integrity (I): None
Availability (A): None

Base Score 3.x

5.30

Severity 3.x

MEDIUM

Vector 2.0

AV:A/AC:L/Au:S/C:P/I:N/A:N CVSS v2.0 Severity and Metrics:

Base Score: 2.70 LOW
Vector: AV:A/AC:L/Au:S/C:P/I:N/A:N

Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Authentication (Au): Single
Confidentiality (C): Physical
Integrity (I): None
Availability (A): None