CVE-2002-0170

CVE Database · CVE-2002-0170

CVE-2002-0170

· N/AModified

CVSS v3.1

N/A

EPSS

1.57%

Published

Apr 22, 2002

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Zope 2.2.0 through 2.5.1 does not properly verify the access for objects with proxy roles, which could allow some users to access documents in violation of the intended configuration.

Affected Products (17)

zope · zopevulnerable

References (12)

http://marc.info/?l=bugtraq&m=101503023511996&w=2

http://www.iss.net/security_center/static/8334.php

http://www.osvdb.org/5350

http://www.redhat.com/support/errata/RHSA-2002-060.html

http://www.securityfocus.com/bid/4229

http://www.zope.org/Products/Zope/hotfixes/

PatchVendor Advisory

http://marc.info/?l=bugtraq&m=101503023511996&w=2

http://www.iss.net/security_center/static/8334.php

http://www.osvdb.org/5350

http://www.redhat.com/support/errata/RHSA-2002-060.html

http://www.securityfocus.com/bid/4229

KEV Catalog EPSS Scores Vendors All CVEs