Lucene search

[email protected]CVE-2012-4612

HistoryNov 16, 2012 - 12:55 a.m.

CVE-2012-4612

2012-11-1600:55:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2012-4612

cross-site scripting

xss vulnerability

emc

rsa data protection manager

appliance

software server

nvd

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

48.1%

JSON

Cross-site scripting (XSS) vulnerability in EMC RSA Data Protection Manager Appliance and Software Server 2.7.x and 3.x before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
emc:rsa_data_protection_manager_applianceemc rsa data protection manager applianceeq3.1
emc:rsa_data_protection_manager_applianceemc rsa data protection manager applianceeq3.2
emc:rsa_data_protection_manager_applianceemc rsa data protection manager applianceeq3.0
emc:rsa_data_protection_manager_software_serveremc rsa data protection manager software servereq2.7.0
emc:rsa_data_protection_manager_software_serveremc rsa data protection manager software servereq3.0
emc:rsa_data_protection_manager_applianceemc rsa data protection manager applianceeq2.7.0
emc:rsa_data_protection_manager_software_serveremc rsa data protection manager software servereq3.1
emc:rsa_data_protection_manager_software_serveremc rsa data protection manager software servereq3.2

CPE	Name	Operator	Version
emc:rsa_data_protection_manager_appliance	emc rsa data protection manager appliance	eq	3.1
emc:rsa_data_protection_manager_appliance	emc rsa data protection manager appliance	eq	3.2
emc:rsa_data_protection_manager_appliance	emc rsa data protection manager appliance	eq	3.0
emc:rsa_data_protection_manager_software_server	emc rsa data protection manager software server	eq	2.7.0
emc:rsa_data_protection_manager_software_server	emc rsa data protection manager software server	eq	3.0
emc:rsa_data_protection_manager_appliance	emc rsa data protection manager appliance	eq	2.7.0
emc:rsa_data_protection_manager_software_server	emc rsa data protection manager software server	eq	3.1
emc:rsa_data_protection_manager_software_server	emc rsa data protection manager software server	eq	3.2

References

archives.neohapsis.com/archives/bugtraq/2012-11/0050.html

www.securityfocus.com/bid/56506

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

48.1%

JSON

Related for CVE-2012-4612

prion1 cvelist1 securityvulns2