CVE-2012-5952
published 2013-02-20CVE-2012-5952: IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2 does not validate Basic Authentication credentials before…
medium5CVSS 3.1
AVNACLAuNCNIPAN
IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2 does not validate Basic Authentication credentials before proceeding to WS-Addressing and WS-Security operations, which allows remote attackers to trigger transmission of unauthenticated messages via unspecified vectors.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |
| ibm | websphere_message_broker | — | — |