Lucene search
HistoryNov 14, 2012 - 12:30 p.m.
CVE-2012-4850
ibm
websphere
application server
liberty profile
cve-2012-4850
nvd
security
validation
bypass
jax-rs
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.3 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.7%
IBM WebSphere Application Server 8.5 Liberty Profile before 8.5.0.1, when JAX-RS is used, does not properly validate requests, which allows remote attackers to gain privileges via unspecified vectors.
Affected configurations
Node
ibmwebsphere_application_serverMatch8.5.0.0-liberty_profile
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:websphere_application_server | ibm websphere application server | eq | 8.5.0.0 |
Related
nvd
nvd
CVE-2012-4850
2012-11-14 12:30:59
prion
prion
Code injection
2012-11-14 12:30:00
cvelist
cvelist
CVE-2012-4850
2012-11-14 11:00:00
seebug
seebug
IBM WebSphere Application Server θΏη¨ζιζεζΌζ΄(CVE-2012-4850)
2012-11-19 00:00:00
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities-03 (Jan 2016)
2016-01-19 00:00:00
nessus
nessus
IBM WebSphere Application Server 8.5 < Fix Pack 1 Multiple Vulnerabilities
2012-11-20 00:00:00
ibm
ibm
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.3 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.7%
Related for CVE-2012-4850