Lucene search
IbmCVE-2012-0717HistoryJun 20, 2012 - 10:27 a.m.
CVE-2012-0717
2012-06-2010:27:28
CWE-287
ibm
web.nvd.nist.gov
49
ibm
websphere
application server
7.0
sslv2
x.509
authentication
bypass
cve-2012-0717
nvd
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
50.0%
IBM WebSphere Application Server 7.0 before 7.0.0.23, when a certain SSLv2 configuration with client authentication is used, allows remote attackers to bypass X.509 client-certificate authentication via unspecified vectors.
Affected configurations
Node
ibmwebsphere_application_serverMatch7.0
ORibmwebsphere_application_serverMatch7.0.0.1
ORibmwebsphere_application_serverMatch7.0.0.2
ORibmwebsphere_application_serverMatch7.0.0.3
ORibmwebsphere_application_serverMatch7.0.0.4
ORibmwebsphere_application_serverMatch7.0.0.5
ORibmwebsphere_application_serverMatch7.0.0.6
ORibmwebsphere_application_serverMatch7.0.0.7
ORibmwebsphere_application_serverMatch7.0.0.8
ORibmwebsphere_application_serverMatch7.0.0.9
ORibmwebsphere_application_serverMatch7.0.0.11
ORibmwebsphere_application_serverMatch7.0.0.13
ORibmwebsphere_application_serverMatch7.0.0.15
ORibmwebsphere_application_serverMatch7.0.0.17
ORibmwebsphere_application_serverMatch7.0.0.19
ORibmwebsphere_application_serverMatch7.0.0.21
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_application_server | 7.0 | cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.1 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.2 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.3 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.4 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.4:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.5 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.5:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.6 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.6:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.7 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.7:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.8 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.8:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 7.0.0.9 | cpe:2.3:a:ibm:websphere_application_server:7.0.0.9:*:*:*:*:*:*:* |
Related
seebug
seebug
IBM WebSphere Application Serverๅฎๅ
จ็ป่ฟๆผๆด
2012-06-23 00:00:00
nvd
nvd
CVE-2012-0717
2012-06-20 10:27:28
prion
prion
Authentication flaw
2012-06-20 10:27:00
cvelist
cvelist
CVE-2012-0717
2012-06-20 10:00:00
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities -07 (Jan 2016)
2016-01-19 00:00:00
ibm
ibm
Security Bulletin: Security Vulnerabilities fixed in IBM WebSphere Application Server 7.0.0.23
2022-09-25 22:31:03
Security Bulletin: Security Vulnerabilities fixed in IBM WebSphere Application Server 6.1.0.43
2022-09-25 22:31:03
WebSphere Application Server and IBM HTTP Server Security Bulletin List
2022-07-13 18:04:48
nessus
nessus
IBM WebSphere Application Server 7.0 < Fix Pack 23 Multiple Vulnerabilities
2012-06-27 00:00:00
IBM WebSphere Application Server 6.1 < 6.1.0.43 Multiple Vulnerabilities
2012-04-04 00:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
50.0%
Related for CVE-2012-0717