Lucene search

[email protected]NVD:CVE-2012-0912

HistoryJan 24, 2012 - 3:55 p.m.

CVE-2012-0912

2012-01-2415:55:04

CWE-89

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

47.9%

JSON

SQL injection vulnerability in Stoneware webNetwork before 6.0.8.0 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

Nvd

Node

stone-warewebnetworkRange≤6.0.7.0

stone-warewebnetworkMatch6.0.5.0

VendorProductVersionCPE
stone-warewebnetwork*cpe:2.3:a:stone-ware:webnetwork:*:*:*:*:*:*:*:*
stone-warewebnetwork6.0.5.0cpe:2.3:a:stone-ware:webnetwork:6.0.5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
stone-ware	webnetwork	*	cpe:2.3:a:stone-ware:webnetwork::::::::
stone-ware	webnetwork	6.0.5.0	cpe:2.3:a:stone-ware:webnetwork:6.0.5.0:::::::*

References

www.stone-ware.com/support/techdocs/kb/d1960/sb_6_0_8.pdf

www.stone-ware.com/swql.jsp?kb=d1960

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

47.9%

JSON

Related for NVD:CVE-2012-0912

cvelist1 cve1 prion1