CVE-2008-4731
CVE-2008-4731 is a critical-severity vulnerability in Michael Christen Yacy with a CVSS 2.0 base score of 10.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Critical (CVSS 2.0 base score 10.0)
- EPSS exploit prediction: 1% (71st percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Michael Christen Yacy
- Published:
- Last modified:
Description
Multiple unspecified vulnerabilities in YaCy before 0.61 have unknown impact and attack vectors.
Frequently asked questions
- What is CVE-2008-4731?
- Multiple unspecified vulnerabilities in YaCy before 0.61 have unknown impact and attack vectors.
- How severe is CVE-2008-4731?
- CVE-2008-4731 has a CVSS 2.0 base score of 10.0, rated critical severity.
- Is CVE-2008-4731 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (71st percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2008-4731?
- CVE-2008-4731 primarily affects Michael Christen Yacy. In total, 54 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2008-4731?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- When was CVE-2008-4731 published?
- CVE-2008-4731 was published on 2008-10-24 and last updated on 2026-06-16.
References
- http://freshmeat.net/projects/yacy/?branch_id=51198&release_id=286006
- http://secunia.com/advisories/32159
- http://www.securityfocus.com/bid/31657
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45769
Affected products (54)
- cpe:2.3:a:michael_christen:yacy:*:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.1_build2004-01-19:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.11_build2004-01-24:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.12_build2004-02-04:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.13_build2004-02-10:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.14_build2004-02-13:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.15_build2004-03-18:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.16_build2004-05-03:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.20_build2004-06-14:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.21_build2004-06-27:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.22_build2004-07-11:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.23_build2004-08-08:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.24_build2004-08-16:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.25_build2004-08-22:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.26_build2004-09-16:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.27_build2004-09-24:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.28_build2004-10-01:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.29_build2004-10-22:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.30_build2004-11-25:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.31_build2004-12-09:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.32:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.33:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.34:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.35:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.36:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.37:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.38:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.39:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.40:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.41:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.42:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.43:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.44:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.45:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.46:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.47:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.48:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.49:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.50:*:*:*:*:*:*:*
- cpe:2.3:a:michael_christen:yacy:0.51:*:*:*:*:*:*:*
More vulnerabilities in Michael Christen Yacy
- CVE-2004-2651 — Medium (CVSS 4.3): Multiple cross-site scripting (XSS) vulnerabilities in YaCy before 0.32 allow remote attackers to inject arbitrary web…