← Back

CVE-2011-3502

nvd nist
Published: Sep 16, 2011Modified: Apr 29, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

The web server in Cogent DataHub 7.1.1.63 and earlier allows remote attackers to obtain the source code of executable files via a request with a trailing (1) space or (2) %2e (encoded dot).

Affected (5)

Cogentdatahub
1 product
Cogent Datahub
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Cogentdatahub
Cogent Datahub
Version 7.0.2
Cogent Datahub
Version 7.0
Cogent Datahub
Version 7.1.0
Cogent Datahub
Version 7.1.1.63
Cogent Datahub
Version 7.1.1

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource

Timeline

No history available yet.