CVE-2002-0341 — Groupwise vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.2%

top 61.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Groupwise

Timeline

PublishedJun 25

Latest updateApr 30

Description

GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDnovell/groupwise5.5

🔴Vulnerability Details

GHSA

GHSA-9852-m4g7-7hj7: GWWEB↗2022-04-30

▶

CVEList

CVE-2002-0341: GWWEB↗2002-05-03

▶