Lucene search
HistoryJun 20, 2012 - 10:27 a.m.
CVE-2012-2161
cve-2012-2161
cross-site scripting
xss
vulnerability
ibm
eclipse help system
deferredview.jsp
iehs
security appscan
spss data collection developer library
remote attackers
web script
html
crafted url
5.3 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.8%
Cross-site scripting (XSS) vulnerability in deferredView.jsp in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x before 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Affected configurations
Node
ibmsecurity_appscan_sourceMatch7.0
ORibmsecurity_appscan_sourceMatch8.0
ORibmsecurity_appscan_sourceMatch8.0.0.1
ORibmsecurity_appscan_sourceMatch8.0.0.2
ORibmsecurity_appscan_sourceMatch8.5
ORibmsecurity_appscan_sourceMatch8.5.0.1
Node
ibmspss_data_collectionMatch6.0
ORibmspss_data_collectionMatch6.0.1
Related
prion
prion
Cross site scripting
2012-06-20 10:27:00
cvelist
cvelist
CVE-2012-2161
2012-06-20 10:00:00
ibm
ibm
nvd
nvd
CVE-2012-2161
2012-06-20 10:27:28
nessus
nessus
IBM Data Studio 3.1 / 3.1.1 Help System Multiple Vulnerabilities
2013-03-15 00:00:00
IBM Lotus Domino 8.5.x Multiple Vulnerabilities
2013-04-26 00:00:00
IBM WebSphere Application Server 8.0 < Fix Pack 4 Multiple Vulnerabilities
2012-08-09 00:00:00
seebug
seebug
IBM Rational AppScan 8.x/7.x 多个安全漏洞
2012-06-16 00:00:00
5.3 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
54.8%
Related for CVE-2012-2161