Vulnerability Details CVE-2012-4850
IBM WebSphere Application Server 8.5 Liberty Profile before 8.5.0.1, when JAX-RS is used, does not properly validate requests, which allows remote attackers to gain privileges via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM67082
- http://www.ibm.com/support/docview.wss?uid=swg21614265
- http://www.securityfocus.com/bid/56460
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79539
- http://www-01.ibm.com/support/docview.wss?uid=swg1PM67082
- http://www.ibm.com/support/docview.wss?uid=swg21614265
- http://www.securityfocus.com/bid/56460
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79539
Products affected by CVE-2012-4850
-
cpe:2.3:a:ibm:websphere_application_server:8.5.0.0