CVE-2008-3717

Published: Aug 19, 2008Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Harmoni before 1.6.0 does not require administrative privileges to list (1) user names or (2) asset ids, which allows remote attackers to obtain sensitive information.

Affected (45)

Products: Harmoni: Harmoni

Harmoni

1 product

Harmoni

Configuration A

45 vulnerable

Vulnerable Software	Affected Versions
Harmoni Harmoni	Up to 1.4.7
Harmoni Harmoni	Version 0.0.2
Harmoni Harmoni	Version 0.0.3
Harmoni Harmoni	Version 0.0.4
Harmoni Harmoni	Version 0.0.5
Harmoni Harmoni	Version 0.1.0
Harmoni Harmoni	Version 0.10.1
Harmoni Harmoni	Version 0.11.0
Harmoni Harmoni	Version 0.12.0
Harmoni Harmoni	Version 0.12.1
Harmoni Harmoni	Version 0.12.3
Harmoni Harmoni	Version 0.13.0
Harmoni Harmoni	Version 0.13.1
Harmoni Harmoni	Version 0.13.2
Harmoni Harmoni	Version 0.13.3
Harmoni Harmoni	Version 0.13.4
Harmoni Harmoni	Version 0.13.5
Harmoni Harmoni	Version 0.13.6
Harmoni Harmoni	Version 0.13.7
Harmoni Harmoni	Version 0.2.0
Harmoni Harmoni	Version 0.3.0
Harmoni Harmoni	Version 0.3.1
Harmoni Harmoni	Version 0.3.2
Harmoni Harmoni	Version 0.5.1
Harmoni Harmoni	Version 0.6.0
Harmoni Harmoni	Version 0.6.2
Harmoni Harmoni	Version 0.7.0
Harmoni Harmoni	Version 0.7.1
Harmoni Harmoni	Version 0.7.2
Harmoni Harmoni	Version 0.7.6
Harmoni Harmoni	Version 0.7.7
Harmoni Harmoni	Version 0.9.0
Harmoni Harmoni	Version 1.0.0
Harmoni Harmoni	Version 1.0.1
Harmoni Harmoni	Version 1.0.2
Harmoni Harmoni	Version 1.0.3
Harmoni Harmoni	Version 1.0.5
Harmoni Harmoni	Version 1.0.6
Harmoni Harmoni	Version 1.1.0
Harmoni Harmoni	Version 1.3.0
Harmoni Harmoni	Version 1.3.2
Harmoni Harmoni	Version 1.3.4
Harmoni Harmoni	Version 1.3.5
Harmoni Harmoni	Version 1.4.2
Harmoni Harmoni	Version 1.4.6