Lucene search

K
nvd[email protected]NVD:CVE-2012-5942
HistoryMar 06, 2013 - 1:10 p.m.

CVE-2012-5942

2013-03-0613:10:25
CWE-79
web.nvd.nist.gov

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

35.7%

Cross-site scripting (XSS) vulnerability in the Data Management Portal Web User Interface in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.

Affected configurations

NVD
Node
ibmtivoli_application_dependency_discovery_managerMatch7.2.0.0
OR
ibmtivoli_application_dependency_discovery_managerMatch7.2.1
OR
ibmtivoli_application_dependency_discovery_managerMatch7.2.1.3

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

35.7%

Related for NVD:CVE-2012-5942