7.5
CVE-2012-0228
- EPSS 2.19%
- Veröffentlicht 02.04.2012 20:55:01
- Zuletzt bearbeitet 16.06.2026 23:36:56
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
Invensys Wonderware Information Server 4.0 SP1 and 4.5 does not properly implement client controls, which allows remote attackers to bypass intended access restrictions via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Invensys ≫ Wonderware Information Server Version4.0 Updatesp1
Invensys ≫ Wonderware Information Server Version4.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.19% | 0.801 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/48603
http://www.securityfocus.com/bid/52851
http://www.securitytracker.com/id?1026886
http://www.securitytracker.com/id?1026887
http://www.us-cert.gov/control_systems/pdf/ICSA-12-062-01.pdf
http://osvdb.org/80890