CVE-2007-2950

3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 80.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Centennial Discovery Numara Asset Manager Symantec Discovery

Timeline

PublishedJul 23

Latest updateMay 1

Description

Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara Asset Manager 8.0 and (2) Symantec Discovery 6.5, uses insecure permissions on certain directories, which allows local users to gain privileges.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages3 packages

▶NVDsymantec/discovery6.5

▶NVDcentennial/discovery2006_featurepack1

▶NVDnumara/asset_manager8.0

🔴Vulnerability Details

GHSA

GHSA-5hhv-2pjm-ghc2: Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara Asset Manager 8↗2022-05-01

▶

CVEList

CVE-2007-2950: Centennial Discovery 2006 Feature Pack 1, which is used by (1) Numara Asset Manager 8↗2007-07-23

▶