CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-3337

IBM InfoSphere Guardium 8.0, 8.01, and 8.2 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to download arbitrary files on the system. IBM X-Force ID: 78284.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.7%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

http://www-01.ibm.com/support/docview.wss?uid=swg21611129
https://exchange.xforce.ibmcloud.com/vulnerabilities/78284
http://www-01.ibm.com/support/docview.wss?uid=swg21611129
https://exchange.xforce.ibmcloud.com/vulnerabilities/78284

Products affected by CVE-2012-3337

Ibm » Infosphere Guardium » Version: 8.0

cpe:2.3:a:ibm:infosphere_guardium:8.0
Ibm » Infosphere Guardium » Version: 8.01

cpe:2.3:a:ibm:infosphere_guardium:8.01
Ibm » Infosphere Guardium » Version: 8.2

cpe:2.3:a:ibm:infosphere_guardium:8.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3337

Products

Pricing

Contact Us