cbcvebase.
CVE-2007-0313
published 2007-01-18

CVE-2007-0313: Unspecified vulnerability in GONICUS System Administration (GOsa) before 2.5.8 allows remote authenticated users to modify certain settings, including the…

PriorityP336critical9CVSS 2.0
AVNACLAuSCCICAC
EPSS
1.79%
75.6th percentile
Unspecified vulnerability in GONICUS System Administration (GOsa) before 2.5.8 allows remote authenticated users to modify certain settings, including the admin password, via crafted POST requests.

Affected

6 ranges
VendorProductVersion rangeFixed in
debiangosa< gosa 2.5.8-1 (bookworm)gosa 2.5.8-1 (bookworm)
gonicusgonicus_system_administration<= 2.5.7
gosa_projectgosa>= 0 < 2.5.8-12.5.8-1
gosa_projectgosa>= 0 < 2.5.8-12.5.8-1
gosa_projectgosa>= 0 < 2.5.8-12.5.8-1
gosa_projectgosa>= 0 < 2.5.8-12.5.8-1

CVSS provenance

nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
osv9.0CRITICAL
vendor_debian9.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.