CVE-2010-3896
published 2010-11-12CVE-2010-3896: The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, which allows remote attackers to modify…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, which allows remote attackers to modify the server configuration via a request to palette.do.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | omnifind | — | — |
| ibm | omnifind | — | — |
| ibm | omnifind | — | — |
| ibm | omnifind | — | — |
| ibm | omnifind | — | — |