CVE-2008-3830Project Condor vulnerability

CWE-2647 documents7 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 82.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Condor Project Condor
Timeline
PublishedOct 8
Latest updateMay 2

Description

Condor before 7.0.5 does not properly handle when the configuration specifies overlapping netmasks in allow or deny rules, which causes the rule to be ignored and allows attackers to bypass intended access restrictions.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDcondor_project/condor7.0.4+14

🔴Vulnerability Details

2
GHSA
GHSA-x3pw-4w9m-43c6: Condor before 72022-05-02
CVEList
CVE-2008-3830: Condor before 72008-10-08

💥Exploits & PoCs

1
Exploit-DB
SharePoint 2007 - Team Services Source Code Disclosure2009-10-26

📋Vendor Advisories

2
Red Hat
condor: allow or deny with overlapping netmasks may be ignored2008-10-07
Debian
CVE-2008-3830: condor - Condor before 7.0.5 does not properly handle when the configuration specifies ov...2008

💬Community

1
Bugzilla
CVE-2008-3830 condor: allow or deny with overlapping netmasks may be ignored2008-09-25
CVE-2008-3830 — Condor Project Condor vulnerability | cvebase