cbcvebase.
CVE-2002-0107
published 2002-03-25

CVE-2002-0107: Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that…

PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
7.85%
94.0th percentile
Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another version string, which causes the information to be leaked in the error message.

Affected

23 ranges
VendorProductVersion rangeFixed in
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
cacheflowcacheos
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.