CVE-2012-5757

Опубликовано: 21 мар. 2013

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the Web Client in IBM Rational ClearQuest 7.1.x before 7.1.2.10 and 8.x before 8.0.0.6 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:rational_clearquest:7.1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.1.8:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.6:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.7:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.8:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:7.1.2.9:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:ibm:rational_clearquest:8.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:8.0.0.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:8.0.0.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:8.0.0.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:8.0.0.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:rational_clearquest:8.0.0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00266

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-jcm8-q732-q4ww

github

больше 3 лет назад