CVE-2012-1031
published 2012-02-08CVE-2012-1031: Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated users to…
PriorityP426medium6CVSS 2.0
AVNACMAuSCPIPAP
EPSS
1.12%
62.0th percentile
Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows remote authenticated users to obtain WebAdmins access by leveraging Edit Mode privileges, a different vulnerability than CVE-2011-3416 and CVE-2011-3417.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
| episerver | episerver_cms | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/47910http://world.episerver.com/Blogs/Jens-N/Dates/2012/1/Security-vulnerability---Elevation-of-privilege/http://world.episerver.com/Blogs/Shahid-Nawaz/Dates/2012/1/General-Hotfix-CMS-6-R2/http://www.securityfocus.com/bid/51877http://secunia.com/advisories/47910http://world.episerver.com/Blogs/Jens-N/Dates/2012/1/Security-vulnerability---Elevation-of-privilege/http://world.episerver.com/Blogs/Shahid-Nawaz/Dates/2012/1/General-Hotfix-CMS-6-R2/http://www.securityfocus.com/bid/51877
2012-02-08
Published