Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-4991
HistoryDec 13, 2012 - 11:53 a.m.

CVE-2012-4991

2012-12-1311:53:00
CWE-22
[email protected]
web.nvd.nist.gov
29
axway securetransport
directory traversal
vulnerability
remote authenticated users
nvd

6.5 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:C/A:N

0.003 Low

EPSS

Percentile

68.1%

JSON

Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a …%5C (encoded dot dot backslash) in a URI.

Related

exploitpack 1
securityvulns 2
packetstorm 1
prion 1
cvelist 1
exploitdb 1
exploitpack
exploitpack
Axway Secure Transport 5.1 SP2 - Directory Traversal
2012-12-12 00:00:00
securityvulns
securityvulns
Path Traversal Vulnerability on Secure Transport versions 5.1 SP2 and earlier
2012-12-18 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-12-18 00:00:00
packetstorm
packetstorm
Axway Directory Traversal
2012-12-11 00:00:00
prion
prion
Directory traversal
2012-12-13 11:53:00
cvelist
cvelist
CVE-2012-4991
2022-10-03 16:15:34
exploitdb
exploitdb
Axway Secure Transport 5.1 SP2 - Directory Traversal
2012-12-12 00:00:00

6.5 Medium

AI Score

Confidence

Low

8.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:C/I:C/A:N

0.003 Low

EPSS

Percentile

68.1%

JSON
Related for CVE-2012-4991
exploitpack1securityvulns2packetstorm1prion1cvelist1exploitdb1