CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4824

Open redirect vulnerability in servlet/traveler in IBM Lotus Notes Traveler 8.5.3 before 8.5.3.3 Interim Fix 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirectURL parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.7%

CVSS Severity

CVSS v2 Score 5.8

References

http://archives.neohapsis.com/archives/fulldisclosure/2012-10/0001.html
http://www-01.ibm.com/support/docview.wss?uid=swg21612229
http://archives.neohapsis.com/archives/fulldisclosure/2012-10/0001.html
http://www-01.ibm.com/support/docview.wss?uid=swg21612229

Products affected by CVE-2012-4824

Ibm » Lotus Notes Traveler » Version: 8.5.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3
Ibm » Lotus Notes Traveler » Version: 8.5.3.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.1
Ibm » Lotus Notes Traveler » Version: 8.5.3.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.2
Ibm » Lotus Notes Traveler » Version: 8.5.3.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4824

Products

Pricing

Contact Us