CVE-2012-2561

EPSS 2.34%
Veröffentlicht 21.05.2012 20:55:21
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cret@cert.org
Teams Watchlist Login
Unerledigt Login

HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hp ≫ Business Service Management Version9.12

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.34%	0.843

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=134013352316810&w=2

http://osvdb.org/81981

http://secunia.com/advisories/49218

http://www.kb.cert.org/vuls/id/859230

US Government Resource

http://www.securityfocus.com/bid/53556

http://www.securitytracker.com/id?1027075

https://nvd.nist.gov/vuln/detail/CVE-2012-2561

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2561

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2561

EUVD