CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2301

Lawson Financials 8.0, when configured to use a third party relational database, stores usernames and passwords in a world-readable file, which allows local users to read the passwords and log onto the database.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.9%

CVSS Severity

CVSS v2 Score 3.3

References

http://seclists.org/lists/bugtraq/2002/Dec/0012.html
http://www.securityfocus.com/bid/6293
https://exchange.xforce.ibmcloud.com/vulnerabilities/10742
http://seclists.org/lists/bugtraq/2002/Dec/0012.html
http://www.securityfocus.com/bid/6293
https://exchange.xforce.ibmcloud.com/vulnerabilities/10742

Products affected by CVE-2002-2301

Lawson Software » Lawson Financials » Version: 8.0

cpe:2.3:a:lawson_software:lawson_financials:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2301

Products

Pricing

Contact Us