CVE-2012-4862

Published Dec 5, 2012

Last updated 3 months ago

CVSS info 2.1

Overview

Description: The Host Connect emulator in IBM Rational Developer for System z 7.1 through 8.5.1 does not properly store the SSL certificate password, which allows local users to obtain sensitive information via unspecified vectors.
Source: psirt@us.ibm.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A610A08-6976-4BD3-BEA3-07E4BB6479EB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:7.6.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AE7F88A-82CB-497B-9BF0-20FC6CC53A33"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:7.6.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0913793-B201-4A51-8F7C-09ABA999A47A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:7.6.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4214C71-0E56-46FF-829A-3938BAD9DC2B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:7.6.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDAF6553-5CDF-460F-ADC5-7AE2FFA4320A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EE886B1-B143-4499-94BC-189AD7B503E7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C99ED2BD-F3C8-44E0-B95D-ADB5BC628066"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BD37E87-18CC-4ACB-BE92-8D063CEA2A35"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9607BF1B-8EFC-419D-84B2-537EA4B480D6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEB98DA3-866B-4EFD-BBFF-E656BFE2D839"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.0.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C9F5302-926D-455B-9E04-8754687D4C5E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B65DE782-FE3A-408E-A486-5B33280B6F2A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "095A59BB-9C5D-40D0-A57F-1162DBD858D2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:rational_developer_for_system_z:8.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4798A47-D1B0-4172-981B-5A0F3C393923"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References