CVE-2012-2560
Published Jul 5, 2012
Last updated 12 years ago
Overview
- Description
- Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001.
- Source
- cret@cert.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-22
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:wellintech:kingview:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "39B19F35-84B4-45AE-96D9-352213070CBC",
"versionEndIncluding": "6.53"
},
{
"criteria": "cpe:2.3:a:wellintech:kingview:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DAB5609B-2D1E-42F5-9C78-1460A21C8795"
},
{
"criteria": "cpe:2.3:a:wellintech:kingview:6.5.30.2010.18018:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F98B1909-52F3-42C7-AF6B-FE5EC1FB1657"
},
{
"criteria": "cpe:2.3:a:wellintech:kingview:6.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37C00AAD-8824-4F27-8203-EBBDB879772D"
},
{
"criteria": "cpe:2.3:a:wellintech:kingview:65.30.2010.18018:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DAAC197-9039-4D12-A4B0-7A534E3A1B59"
},
{
"criteria": "cpe:2.3:a:wellintech:kingview:65.30.17249:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5161BBEA-1BA5-4FF1-9D8A-52D6C7BE2282"
}
],
"operator": "OR"
}
]
}
]