2.9
CVE-2012-3582
- EPSS 0.63%
- Veröffentlicht 04.09.2012 11:04:49
- Zuletzt bearbeitet 16.06.2026 23:43:31
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circumstances by making a request near the end of a user's session.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Symantec ≫ Pgp Universal Server Version3.2.0
Symantec ≫ Pgp Universal Server Version3.2.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.63% | 0.452 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.9 | 5.5 | 2.9 |
AV:A/AC:M/Au:N/C:P/I:N/A:N
|
http://www.securityfocus.com/bid/55246
http://www.securitytracker.com/id?1027467
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120830_00