VYPR
High severityNVD Advisory· Published Jul 23, 2002· Updated Jun 16, 2026

CVE-2002-0688

CVE-2002-0688

Description

ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
zopePyPI
>= 2.4.0, < 2.6.02.6.0

Affected products

3
  • Zope/Zope2 versions
    cpe:2.3:a:zope:zope:2.4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:zope:zope:2.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:zope:zope:2.5.1:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 2.4.0, < 2.6.0

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.