Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-2172
HistoryJun 22, 2012 - 10:24 a.m.

CVE-2012-2172

2012-06-2210:24:07
CWE-79
[email protected]
web.nvd.nist.gov
3

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.5

Confidence

High

EPSS

0.004

Percentile

74.5%

JSON

Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.

Affected configurations

Nvd
Node
ibmds_storage_manager_host_softwareRange10.83
OR
ibmds_storage_manager_host_softwareMatch10.8
OR
ibmds_storage_manager_host_softwareMatch10.60.x5.14
AND
ibmds4100
OR
ibmds4100Match1724
OR
ibmds4200Match1814
OR
ibmds4300Match1722
OR
ibmds4400Match1742
OR
ibmds4500Match1742
OR
ibmds4700Match1814
OR
ibmds4800Match1815
OR
ibmsystem_storage_dcs3700_storage_subsystemMatch1818
OR
ibmsystem_storage_ds3200Match1726
OR
ibmsystem_storage_ds3300Match1726
OR
ibmsystem_storage_ds3400Match1726
OR
ibmsystem_storage_ds3512Match1746
OR
ibmsystem_storage_ds3524Match1746
OR
ibmsystem_storage_ds3950_expressMatch1814
OR
ibmsystem_storage_ds5020_disk_controllerMatch1814-20a
OR
ibmsystem_storage_ds5100_storage_controllerMatch1818
OR
ibmsystem_storage_ds5300_storage_controllerMatch1818
VendorProductVersionCPE
ibmds_storage_manager_host_software*cpe:2.3:a:ibm:ds_storage_manager_host_software:*:*:*:*:*:*:*:*
ibmds_storage_manager_host_software10.8cpe:2.3:a:ibm:ds_storage_manager_host_software:10.8:*:*:*:*:*:*:*
ibmds_storage_manager_host_software10.60.x5.14cpe:2.3:a:ibm:ds_storage_manager_host_software:10.60.x5.14:*:*:*:*:*:*:*
ibmds4100*cpe:2.3:h:ibm:ds4100:*:*:*:*:*:*:*:*
ibmds41001724cpe:2.3:h:ibm:ds4100:1724:*:*:*:*:*:*:*
ibmds42001814cpe:2.3:h:ibm:ds4200:1814:*:*:*:*:*:*:*
ibmds43001722cpe:2.3:h:ibm:ds4300:1722:*:*:*:*:*:*:*
ibmds44001742cpe:2.3:h:ibm:ds4400:1742:*:*:*:*:*:*:*
ibmds45001742cpe:2.3:h:ibm:ds4500:1742:*:*:*:*:*:*:*
ibmds47001814cpe:2.3:h:ibm:ds4700:1814:*:*:*:*:*:*:*
Rows per page:
1-10 of 211

Related

cvelist 1
prion 1
cve 1
zeroscience 1
exploitdb 1
exploitpack 1
packetstorm 1
cvelist
cvelist
CVE-2012-2172
2012-06-22 10:00:00
prion
prion
Cross site scripting
2012-06-22 10:24:00
cve
cve
CVE-2012-2172
2012-06-22 10:24:07
zeroscience
zeroscience
IBM System Storage DS Storage Manager Profiler Multiple Vulnerabilities
2012-06-20 00:00:00
exploitdb
exploitdb
IBM System Storage DS Storage Manager Profiler - Multiple Vulnerabilities
2012-06-21 00:00:00
exploitpack
exploitpack
IBM System Storage DS Storage Manager Profiler - Multiple Vulnerabilities
2012-06-21 00:00:00
packetstorm
packetstorm
IBM System Storage DS Storage Manager Profiler 4.8.6 XSS / SQL Injection
2012-06-21 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.5

Confidence

High

EPSS

0.004

Percentile

74.5%

JSON
Related for NVD:CVE-2012-2172
cvelist1prion1cve1zeroscience1exploitdb1exploitpack1packetstorm1