CVE-2011-4311
NONE EPSS 72.4%
Published Nov 19, 201114y ago · Modified Jun 16, 20262w ago
Published Nov 19, 2011 14y ago
Last Modified Jun 16, 2026 2w ago
Description
ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote attackers to bypass intended resource restrictions via unspecified vectors.
Threat Intelligence
EPSS Exploit Probability
72.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 15
| Vendor | Product | Version | Range |
|---|---|---|---|
| montala | resourcespace | * | ≤4.2.2816 |
| montala | resourcespace | 2.2.1240 | any |
| montala | resourcespace | 2.3.1374 | any |
| montala | resourcespace | 3.0.1490 | any |
| montala | resourcespace | 3.1.1557 | any |
| montala | resourcespace | 3.2.1651 | any |
| montala | resourcespace | 3.3.1723 | any |
| montala | resourcespace | 3.4.1794 | any |
| montala | resourcespace | 3.5.1857 | any |
| montala | resourcespace | 3.6.2022 | any |
| montala | resourcespace | 3.7.2088 | any |
| montala | resourcespace | 3.8.2144 | any |
| montala | resourcespace | 3.9.2269 | any |
| montala | resourcespace | 4.0.2429 | any |
| montala | resourcespace | 4.1.2567 | any |
References 3
- openwall.com http://openwall.com/lists/oss-security/2011/11/13/2
- openwall.com http://openwall.com/lists/oss-security/2011/11/14/3
- resourcespace.org http://www.resourcespace.org/download.php
Remediation
- resourcespace.org http://www.resourcespace.org/download.php