Netezza Security Vulnerabilities and Issues — Netezza CVE List

cve

CVE-2012-5760

SQL injection vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

7.9AI Score

0.001EPSS

2013-02-20 12:09 PM

19

cve

CVE-2012-5761

Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

5.2AI Score

0.001EPSS

2013-02-20 12:09 PM

25

cve

CVE-2012-5762

Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol.

5.2AI Score

0.001EPSS

2013-02-20 12:09 PM

18

cve

CVE-2012-5763

Cross-site request forgery (CSRF) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

7.1AI Score

0.001EPSS

2013-02-20 12:09 PM

21

cve

CVE-2012-5940

The WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza, when SSL is not enabled, allows remote attackers to discover credentials by sniffing the network during the authentication process.

6.9AI Score

0.002EPSS

2013-02-20 12:09 PM

25

cve

CVE-2012-5941

Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.

5.3AI Score

0.001EPSS

2013-02-20 12:09 PM

20

Netezza Security Vulnerabilities - 2013