CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4832

Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 and InfoSphere Business Glossary 8.1.1 and 8.1.2 does not have an off autocomplete attribute for the password field on the login page, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.5%

CVSS Severity

CVSS v2 Score 1.9

References

Products affected by CVE-2012-4832

Ibm » Infosphere Business Glossary » Version: 8.1.1

cpe:2.3:a:ibm:infosphere_business_glossary:8.1.1
Ibm » Infosphere Business Glossary » Version: 8.1.2

cpe:2.3:a:ibm:infosphere_business_glossary:8.1.2
Ibm » Infosphere Information Server » Version: 8.1

cpe:2.3:a:ibm:infosphere_information_server:8.1
Ibm » Infosphere Information Server » Version: 8.5

cpe:2.3:a:ibm:infosphere_information_server:8.5
Ibm » Infosphere Information Server » Version: 8.5.0.1

cpe:2.3:a:ibm:infosphere_information_server:8.5.0.1
Ibm » Infosphere Information Server » Version: 8.5.0.2

cpe:2.3:a:ibm:infosphere_information_server:8.5.0.2
Ibm » Infosphere Information Server » Version: 8.7

cpe:2.3:a:ibm:infosphere_information_server:8.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4832

Products

Pricing

Contact Us