Lucene search

[email protected]CVE-2012-3321

HistoryFeb 20, 2013 - 12:09 p.m.

CVE-2012-3321

2013-02-2012:09:00

CWE-264

[email protected]

web.nvd.nist.gov

ibm

smartcloud

control desk

7.5

remote

authenticated

access restrictions

expired password

6.8 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

59.4%

JSON

IBM SmartCloud Control Desk 7.5 allows remote authenticated users to bypass intended access restrictions via vectors involving an expired password.

CPENameOperatorVersion
ibm:smartcloud_control_deskibm smartcloud control deskeq7.5

CPE	Name	Operator	Version
ibm:smartcloud_control_desk	ibm smartcloud control desk	eq	7.5

References

www-01.ibm.com/support/docview.wss?uid=swg1IV25198

www-01.ibm.com/support/docview.wss?uid=swg21625624

exchange.xforce.ibmcloud.com/vulnerabilities/77916

6.8 Medium

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

59.4%

JSON

Related for CVE-2012-3321

cvelist1 prion1