Lucene search

[email protected]CVE-2012-2950

HistoryJan 09, 2020 - 10:15 p.m.

CVE-2012-2950

2020-01-0922:15:00

CWE-434

[email protected]

web.nvd.nist.gov

cve-2012-2950

gateway geomatics

mapserver

windows

local file include vulnerability

remote code execution

information disclosure

nvd

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.6%

JSON

Gateway Geomatics MapServer for Windows before 3.0.6 contains a Local File Include Vulnerability which allows remote attackers to execute local PHP code and obtain sensitive information.

CPENameOperatorVersion
gatewaygeomatics:mapservergatewaygeomatics mapserverlt3.0.6

CPE	Name	Operator	Version
gatewaygeomatics:mapserver	gatewaygeomatics mapserver	lt	3.0.6

References

www.securityfocus.com/bid/53737

exchange.xforce.ibmcloud.com/vulnerabilities/75983

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.6%

JSON

Related for CVE-2012-2950

securityvulns1 nessus1 openvas1 prion1