Lucene search
RedhatCVE-2012-4501HistoryOct 26, 2012 - 10:39 a.m.
CVE-2012-4501
2012-10-2610:39:16
CWE-264
redhat
web.nvd.nist.gov
24
citrix
cloud.com
cloudstack
apache
pre-release
vulnerability
api calls
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.015
Percentile
87.1%
Citrix Cloud.com CloudStack, and Apache CloudStack pre-release, allows remote attackers to make arbitrary API calls by leveraging the system user account, as demonstrated by API calls to delete VMs.
Affected configurations
Node
apachecloudstackMatch-prerelease
ORcitrixcloudstackMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apache | cloudstack | - | cpe:2.3:a:apache:cloudstack:-:prerelease:*:*:*:*:*:* |
| citrix | cloudstack | - | cpe:2.3:a:citrix:cloudstack:-:*:*:*:*:*:*:* |
Related
securityvulns
securityvulns
Apache Cloudstack default account
2012-10-15 00:00:00
[CVE-2012-4501] CloudStack configuration vulnerability
2012-10-15 00:00:00
thn
thn
CVE-2012-4501 : Critical vulnerability warned in Cloudstack
2012-10-09 20:44:00
prion
prion
Code injection
2012-10-26 10:39:00
cvelist
cvelist
CVE-2012-4501
2012-10-26 10:00:00
nvd
nvd
CVE-2012-4501
2012-10-26 10:39:16
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.015
Percentile
87.1%
Related for CVE-2012-4501