CVE-2008-4808Sensitive Information Exposure in IBM Lotus Connections

CWE-200Sensitive Information Exposure4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 46.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Connections
Timeline
PublishedOct 31
Latest updateMay 17

Description

IBM Lotus Connections 2.x before 2.0.1 allows attackers to discover passwords via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-4m7f-g3v4-6vcv: IBM Lotus Connections 22022-05-17
CVEList
CVE-2008-4808: IBM Lotus Connections 22008-10-31

💥Exploits & PoCs

1
Exploit-DB
Graugon PHP Article Publisher Pro 1.5 - Insecure Cookie Handling2008-11-01
CVE-2008-4808 — Sensitive Information Exposure in IBM | cvebase