CVE-2012-0733

CWE-2644 documents4 sources
Severity
6.0MEDIUM
EPSS
0.4%
top 38.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Rational Appscan
Timeline
PublishedMay 3
Latest updateMay 17

Description

IBM Rational AppScan Enterprise 5.x and 8.x before 8.5.0.1, when Integrated Windows authentication is used, allows remote authenticated users to obtain administrative privileges by hijacking a session associated with the service account.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 6.8 | Impact: 6.4

Affected Packages1 packages

NVDibm/rational_appscan15 versions+14

🔴Vulnerability Details

2
GHSA
GHSA-qcg7-x5r6-58hf: IBM Rational AppScan Enterprise 52022-05-17
CVEList
CVE-2012-0733: IBM Rational AppScan Enterprise 52012-05-03

💬Community

1
Bugzilla
CVE-2012-3532 GateIn Portal: Cross Site Request Forgery2012-08-23
CVE-2012-0733 (MEDIUM CVSS 6) | IBM Rational AppScan Enterprise 5.x | cvebase.io