3.5
CVE-2012-3310
- EPSS 0.26%
- Published 17.01.2013 22:55:00
- Last modified 11.04.2025 00:51:21
- Source psirt@us.ibm.com
- Teams watchlist Login
- Open Login
IBM Tivoli Federated Identity Manager (TFIM) before 6.1.1.14, 6.2.0 before 6.2.0.12, and 6.2.1 before 6.2.1.4 allows context-dependent attackers to discover (1) a cleartext LDAP Bind Password, (2) keystore passwords, (3) a cleartext Basic Authentication password from a client, or (4) a cleartext user password by leveraging a logging configuration with a log trace setting of all.
Data is provided by the National Vulnerability Database (NVD)
Ibm ≫ Tivoli Federated Identity Manager Version <= 6.1.1.13
Ibm ≫ Tivoli Federated Identity Manager Version6.1.1
Ibm ≫ Tivoli Federated Identity Manager Version6.1.1.12
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.1
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.2
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.3
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.8
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.9
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.10
Ibm ≫ Tivoli Federated Identity Manager Version6.2.0.11
Ibm ≫ Tivoli Federated Identity Manager Version6.2.1
Ibm ≫ Tivoli Federated Identity Manager Version6.2.1.1
Ibm ≫ Tivoli Federated Identity Manager Version6.2.1.2
Ibm ≫ Tivoli Federated Identity Manager Version6.2.1.3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.26% | 0.466 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 3.5 | 6.8 | 2.9 |
AV:N/AC:M/Au:S/C:P/I:N/A:N
|