Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIbmCVELIST:CVE-2012-0199
HistoryMar 06, 2012 - 2:00 a.m.

CVE-2012-0199

2012-03-0602:00:00
ibm
www.cve.org
4

AI Score

8.2

Confidence

Low

EPSS

0.015

Percentile

87.2%

JSON

Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allow remote attackers to execute arbitrary SQL commands via (1) a SOAP message to the Printer.getPrinterAgentKey function in the SoapServlet servlet, (2) the User.updateUserValue function in the register.do servlet, (3) the User.isExistingUser function in the logon.do servlet, (4) the Asset.getHWKey function in the CallHomeExec servlet, (5) the Asset.getMimeType function in the getAttachment (aka GetAttachmentServlet) servlet, (6) the addAsset.do servlet, or (7) a crafted EG2 file.

Related

cve 1
checkpoint_advisories 2
seebug 1
nessus 1
prion 1
nvd 1
zdi 1
cve
cve
CVE-2012-0199
2012-03-06 04:18:03
checkpoint_advisories
checkpoint_advisories
IBM Tivoli Provisioning Manager Express User.updateUserValue SQL Injection (CVE-2012-0199)
2012-05-14 00:00:00
IBM Tivoli Provisioning Manager Express Asset.getMimeType SQL Injection (CVE-2012-0199)
2012-05-14 00:00:00
seebug
seebug
IBM WebSphere Application Server for z/OS JAX-RPC远程安全漏洞
2012-03-02 00:00:00
nessus
nessus
Tivoli Provisioning Manager Express for Software Distribution Multiple SQL Injections
2012-03-29 00:00:00
prion
prion
Sql injection
2012-03-06 04:18:00
nvd
nvd
CVE-2012-0199
2012-03-06 04:18:03
zdi
zdi
IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 Multiple Remote Code Execution Vulnerabilities
2012-03-01 00:00:00

AI Score

8.2

Confidence

Low

EPSS

0.015

Percentile

87.2%

JSON
Related for CVELIST:CVE-2012-0199
cve1checkpoint_advisories2seebug1nessus1prion1nvd1zdi1