Redhat Conga vulnerabilities

CVE-2014-3521 [MEDIUM] CWE-264 CVE-2014-3521: The component in (1) /luci/homebase and (2) /luci/cluster menu in Red Hat Conga 0.12.2 allows remote The component in (1) /luci/homebase and (2) /luci/cluster menu in Red Hat Conga 0.12.2 allows remote authenticated users to bypass intended access restrictions via a crafted URL.

CVE-2013-6496 [MEDIUM] CWE-200 CVE-2013-6496: Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive information via a crafted request t Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive information via a crafted request to the (1) homebase, (2) cluster, (3) storage, (4) portal_skins/custom, or (5) logs Luci extension.

CVE-2007-4136 [MEDIUM] CVE-2007-4136: The ricci daemon in Red Hat Conga 0.10.0 allows remote attackers to cause a denial of service (loss The ricci daemon in Red Hat Conga 0.10.0 allows remote attackers to cause a denial of service (loss of new connections) by repeatedly sending data or attempting connections.