CVE Vulnerabilities

CVE-2014-3521

Published: Oct 06, 2014 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:N
RedHat/V2
5.5 MODERATE
AV:N/AC:L/Au:S/C:P/I:P/A:N
RedHat/V3
Ubuntu

The component in (1) /luci/homebase and (2) /luci/cluster menu in Red Hat Conga 0.12.2 allows remote authenticated users to bypass intended access restrictions via a crafted URL.

Affected Software

Name Vendor Start Version End Version
Conga Redhat 0.12.2 (including) 0.12.2 (including)
Red Hat Enterprise Linux 5 RedHat conga-0:0.12.2-81.el5 *

References