Vulnerability Details : CVE-2007-6319
Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitrary mailing lists via unknown vectors related to modification of client-side information; and (3) allow remote authenticated administrators to modify other account data by creating "new accounts that collide with existing accounts."
Products affected by CVE-2007-6319
- cpe:2.3:a:lyris:list_manager:8.95:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:8.95b:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:8.95c:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:8.95a:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.3a:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.2b:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.3:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.2:*:*:*:*:*:*:*
- cpe:2.3:a:lyris:list_manager:9.2a:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-6319
1.68%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-6319
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2007-6319
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-6319
Jump to