cbcvebase.
CVE-2008-6603
published 2009-04-03

CVE-2008-6603: MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to True, which might allow remote attackers to bypass intended access…

PriorityP430medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
1.64%
73.4th percentile
MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to True, which might allow remote attackers to bypass intended access restrictions, a different vulnerability than CVE-2008-1937.

Affected

7 ranges
VendorProductVersion rangeFixed in
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin
moinmomoinmoin

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
ghsa6.8MEDIUM
osv6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.