CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-2455

Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.2%

CVSS Severity

CVSS v2 Score 6.4

References

http://seclists.org/fulldisclosure/2012/Sep/62
http://secunia.com/advisories/50508
http://www.osvdb.org/85499
http://seclists.org/fulldisclosure/2012/Sep/62
http://secunia.com/advisories/50508
http://www.osvdb.org/85499

Products affected by CVE-2012-2455

Advance Productivity Software » Dte Axiom » Version: Any

cpe:2.3:a:advance_productivity_software:dte_axiom:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2455

Products

Pricing

Contact Us