CVE-2008-4807

CWE-2554 documents4 sources
Severity
2.1LOW
EPSS
0.1%
top 80.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Connections
Timeline
PublishedOct 31
Latest updateMay 17

Description

IBM Lotus Connections 2.x before 2.0.1 stores the password for the administrative user in the trace.log file, which allows local users to obtain sensitive information by reading this file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-wxhf-vrqv-h872: IBM Lotus Connections 22022-05-17
CVEList
CVE-2008-4807: IBM Lotus Connections 22008-10-31

💥Exploits & PoCs

1
Exploit-DB
Visagesoft eXPert PDF EditorX - 'VSPDFEditorX.ocx' Insecure Method2008-12-05
CVE-2008-4807 (LOW CVSS 2.1) | IBM Lotus Connections 2.x before 2. | cvebase.io