CVE-2014-2301

OrbiTeam BSCW <5.0.8 - Info Disclosure

Title source: llm
STIX 2.1

Description

OrbiTeam BSCW before 5.0.8 allows remote attackers to obtain sensitive metadata via the inf operations (op=inf) to an object in pub/bscw.cgi/.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/532055/100/0/threaded
Vendor Advisory x_refsource_misc
http://www.bscw.de/english/news.html

Scores

EPSS 0.0225
EPSS Percentile 80.8%

Details

CWE
CWE-200
Status published
Products (1)
bscw/bscw < 5.0.7
Published May 12, 2014
Tracked Since Feb 18, 2026