6.8
CVE-2012-2294
- EPSS 0.4%
- Veröffentlicht 06.02.2013 12:05:42
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle security_alert@emc.com
- Teams Watchlist Login
- Unerledigt Login
EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to conduct clickjacking attacks via a crafted web page.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Emc ≫ Rsa Archer Smartsuite Version4.3
Emc ≫ Rsa Archer Smartsuite Version4.5
Emc ≫ Rsa Archer Egrc Version5.0
Emc ≫ Rsa Archer Egrc Version5.1
Emc ≫ Rsa Archer Egrc Version5.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.574 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.