10
CVE-2012-2561
- EPSS 8.66%
- Veröffentlicht 21.05.2012 20:55:21
- Zuletzt bearbeitet 16.06.2026 23:41:41
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Business Service Management Version9.12
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 8.66% | 0.944 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://marc.info/?l=bugtraq&m=134013352316810&w=2
http://osvdb.org/81981
http://secunia.com/advisories/49218
http://www.kb.cert.org/vuls/id/859230
http://www.securityfocus.com/bid/53556
http://www.securitytracker.com/id?1027075