Lucene search
HistoryJun 22, 2012 - 10:24 a.m.
CVE-2012-2171
cve-2012-2171
sql injection
ibm
system storage
ds storage manager
nvd
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
SQL injection vulnerability in ModuleServlet.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote authenticated users to execute arbitrary SQL commands via the selectedModuleOnly parameter in a state_viewmodulelog action to the ModuleServlet URI.
CPE configuration
ibmds_storage_manager_host_softwareRange≤10.83
ORibmds_storage_manager_host_softwareMatch10.8
ORibmds_storage_manager_host_softwareMatch10.60.x5.14
ibmds4100
ORibmds4100Match1724
ORibmds4200Match1814
ORibmds4300Match1722
ORibmds4400Match1742
ORibmds4500Match1742
ORibmds4700Match1814
ORibmds4800Match1815
ORibmsystem_storage_dcs3700_storage_subsystemMatch1818
ORibmsystem_storage_ds3200Match1726
ORibmsystem_storage_ds3300Match1726
ORibmsystem_storage_ds3400Match1726
ORibmsystem_storage_ds3512Match1746
ORibmsystem_storage_ds3524Match1746
ORibmsystem_storage_ds3950_expressMatch1814
ORibmsystem_storage_ds5020_disk_controllerMatch1814-20a
ORibmsystem_storage_ds5100_storage_controllerMatch1818
ORibmsystem_storage_ds5300_storage_controllerMatch1818
Related
prion
prion
Sql injection
2012-06-22 10:24:00
cvelist
cvelist
CVE-2012-2171
2012-06-22 10:00:00
packetstorm
packetstorm
IBM System Storage DS Storage Manager Profiler 4.8.6 XSS / SQL Injection
2012-06-21 00:00:00
exploitpack
exploitpack
IBM System Storage DS Storage Manager Profiler - Multiple Vulnerabilities
2012-06-21 00:00:00
nvd
nvd
NVD:CVE-2012-2171
2012-06-22 10:24:06
zeroscience
zeroscience
IBM System Storage DS Storage Manager Profiler Multiple Vulnerabilities
2012-06-20 00:00:00
exploitdb
exploitdb
IBM System Storage DS Storage Manager Profiler - Multiple Vulnerabilities
2012-06-21 00:00:00
7.9 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related for CVE-2012-2171