CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4829

IBM XIV Storage System Gen3 before 11.2 relies on a default X.509 v3 certificate for authentication, which allows man-in-the-middle attackers to spoof servers by leveraging an inappropriate certificate-trust relationship.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.1%

CVSS Severity

CVSS v2 Score 4.3

References

http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004323
https://exchange.xforce.ibmcloud.com/vulnerabilities/78860
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004323
https://exchange.xforce.ibmcloud.com/vulnerabilities/78860

Products affected by CVE-2012-4829

Ibm » Xiv Storage System Gen3 » Version: Any

cpe:2.3:h:ibm:xiv_storage_system_gen3:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4829

Products

Pricing

Contact Us