CVE-2012-3256 — Cross-Site Request Forgery in HP Business Availability Center

CWE-352 — Cross-Site Request Forgery4 documents4 sources
Severity
6.8MEDIUMNVD
EPSS
0.1%
top 69.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
HP Business Availability Center
Timeline
PublishedSep 8
Latest updateMay 17

Description

Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-jg2r-m5fm-7q29: Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8↗2022-05-17
â–¶
CVEList
CVE-2012-3256: Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8↗2012-09-08
â–¶

💥Exploits & PoCs

1
Exploit-DB
Photodex ProShow Producer 5.0.3256 - Buffer Overflow↗2012-07-03
â–¶
CVE-2012-3256 — Cross-Site Request Forgery in HP | cvebase