CVE-2016-4041
- Source
- https://cve.org/CVERecord?id=CVE-2016-4041
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-4041.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2016-4041
- Aliases
- Published
- 2017-02-24T20:59:00.283Z
- Modified
- 2026-04-24T04:05:00.114607Z
- Severity
-
- 7.3 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
- Summary
- [none]
- Details
-
Plone 4.0 through 5.1a1 does not have security declarations for Dexterity content-related WebDAV requests, which allows remote attackers to gain webdav access via unspecified vectors.
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.10" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.10:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.1" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.1:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.2" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.2:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.3" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.3:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.4" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.4:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.5" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.5:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.7" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.7:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.8" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.8:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.0.9" } ], "cpe": "cpe:2.3:a:plone:plone:4.0.9:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.1.3" } ], "cpe": "cpe:2.3:a:plone:plone:4.1.3:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.1.4" } ], "cpe": "cpe:2.3:a:plone:plone:4.1.4:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.1.5" } ], "cpe": "cpe:2.3:a:plone:plone:4.1.5:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.1.6" } ], "cpe": "cpe:2.3:a:plone:plone:4.1.6:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.1" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.1:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.2" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.2:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.3" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.3:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.4" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.4:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.5" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.5:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.6" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.6:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.7" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.7:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.8" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.8:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "4.3.9" } ], "cpe": "cpe:2.3:a:plone:plone:4.3.9:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "5.0" } ], "cpe": "cpe:2.3:a:plone:plone:5.0:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "5.0-rc1" } ], "cpe": "cpe:2.3:a:plone:plone:5.0:rc1:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "5.0-rc2" } ], "cpe": "cpe:2.3:a:plone:plone:5.0:rc2:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "5.0-rc3" } ], "cpe": "cpe:2.3:a:plone:plone:5.0:rc3:*:*:*:*:*:*" } ] }- References
Affected packages
Git / github.com/plone/plone.namedfile
Affected ranges
- Type
- GIT
- Repo
- https://github.com/plone/plone.namedfile
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "extracted_events": [ { "introduced": "0" }, { "last_affected": "4.0" }, { "last_affected": "4.1" }, { "last_affected": "4.1.1" }, { "last_affected": "4.1.2" }, { "last_affected": "4.2" }, { "last_affected": "4.2.1" }, { "last_affected": "4.2.2" }, { "last_affected": "4.2.3" }, { "last_affected": "4.2.4" }, { "last_affected": "4.2.5" }, { "last_affected": "4.2.6" }, { "last_affected": "4.2.7" }, { "last_affected": "4.3" }, { "last_affected": "5.0-a1" }, { "last_affected": "5.0.1" }, { "last_affected": "5.0.2" }, { "last_affected": "5.0.3" }, { "last_affected": "5.0.4" } ], "cpe": [ "cpe:2.3:a:plone:plone:4.0:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.1:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.1.2:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.2.7:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:4.3:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:5.0:a1:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:5.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:5.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:5.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:plone:plone:5.0.4:*:*:*:*:*:*:*" ] }