CVE-2012-0228

EPSS 0.56%
Published 02.04.2012 20:55:01
Last modified 11.04.2025 00:51:21
Source cret@cert.org
Teams watchlist Login
Open Login

Invensys Wonderware Information Server 4.0 SP1 and 4.5 does not properly implement client controls, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Invensys ≫ Wonderware Information Server Version4.0 Updatesp1

Invensys ≫ Wonderware Information Server Version4.5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.56%	0.657

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/48603

http://www.securityfocus.com/bid/52851

http://www.securitytracker.com/id?1026886

http://www.securitytracker.com/id?1026887

http://www.us-cert.gov/control_systems/pdf/ICSA-12-062-01.pdf

US Government Resource

http://osvdb.org/80890

https://nvd.nist.gov/vuln/detail/CVE-2012-0228

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-0228

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-0228

EUVD