CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4825

Multiple cross-site scripting (XSS) vulnerabilities in servlet/traveler/ILNT.mobileconfig in IBM Lotus Notes Traveler before 8.5.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) userId or (2) address parameter in a getClientConfigFile action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.5%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2012-4825

Ibm » Lotus Notes Traveler » Version: 8.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.0
Ibm » Lotus Notes Traveler » Version: 8.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1
Ibm » Lotus Notes Traveler » Version: 8.0.1.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.2
Ibm » Lotus Notes Traveler » Version: 8.0.1.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.3
Ibm » Lotus Notes Traveler » Version: 8.5.0.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.0
Ibm » Lotus Notes Traveler » Version: 8.5.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.1
Ibm » Lotus Notes Traveler » Version: 8.5.0.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.2
Ibm » Lotus Notes Traveler » Version: 8.5.1.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.1
Ibm » Lotus Notes Traveler » Version: 8.5.1.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.2
Ibm » Lotus Notes Traveler » Version: 8.5.1.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.1.3
Ibm » Lotus Notes Traveler » Version: 8.5.2.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.2.1
Ibm » Lotus Notes Traveler » Version: 8.5.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3
Ibm » Lotus Notes Traveler » Version: 8.5.3.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4825

Products

Pricing

Contact Us