CVE-2009-0274
Severity CVSS v4.0:
Pending analysis
Type:
CWE-200
Information Leak / Disclosure
Publication date:
03/02/2009
Last modified:
03/02/2009
Description
Unspecified vulnerability in WebAccess in Novell GroupWise 6.5, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 might allow remote attackers to obtain sensitive information via a crafted URL, related to conversion of POST requests to GET requests.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:novell:groupwise:6.5:*:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:7.0:*:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:7.01:*:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:7.02x:*:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:7.03:*:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:7.03:hp1a:*:*:*:*:*:* | ||
cpe:2.3:a:novell:groupwise:8.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page