CVE-2012-2561

EPSS 2.34%
Published 21.05.2012 20:55:21
Last modified 11.04.2025 00:51:21
Source cret@cert.org
Teams watchlist Login
Open Login

HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Hp ≫ Business Service Management Version9.12

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.34%	0.843

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=134013352316810&w=2

http://osvdb.org/81981

http://secunia.com/advisories/49218

http://www.kb.cert.org/vuls/id/859230

US Government Resource

http://www.securityfocus.com/bid/53556

http://www.securitytracker.com/id?1027075

https://nvd.nist.gov/vuln/detail/CVE-2012-2561

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2561

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2561

EUVD