CVE-2009-0669

CVE Database · CVE-2009-0669

CVE-2009-0669

· N/AModified

CVSS v3.1

N/A

EPSS

2.86%

Published

Aug 7, 2009

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Zope Object Database (ZODB) before 3.8.2, when certain Zope Enterprise Objects (ZEO) database sharing is enabled, allows remote attackers to bypass authentication via vectors involving the ZEO network protocol.

Weaknesses (CWE)

CWE-287

Affected Products (3)

zope · zodbvulnerable

References (16)

http://mail.zope.org/pipermail/zope-announce/2009-August/002220.html

http://osvdb.org/56826

http://pypi.python.org/pypi/ZODB3/3.8.2#whats-new-in-zodb-3-8-2

PatchVendor Advisory

http://secunia.com/advisories/36204

Vendor Advisory

http://secunia.com/advisories/36205

Vendor Advisory

http://www.securityfocus.com/bid/35987

http://www.vupen.com/english/advisories/2009/2217

https://exchange.xforce.ibmcloud.com/vulnerabilities/52379

http://mail.zope.org/pipermail/zope-announce/2009-August/002220.html

KEV Catalog EPSS Scores Vendors All CVEs