| Max CVSS | 4.3 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-2170 | 4.3 |
The Application Snoop Servlet in IBM WebSphere Application Server 7.0 before 7.0.0.23 does not properly restrict access, which allows remote attackers to obtain sensitive client and request information via a direct request.
|
29-08-2017 - 01:31 | 20-06-2012 - 10:27 | |
| CVE-2012-0720 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Integration Solution Console in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
29-08-2017 - 01:31 | 20-06-2012 - 10:27 | |
| CVE-2012-0716 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
10-07-2012 - 04:27 | 20-06-2012 - 10:27 | |
| CVE-2012-0717 | 2.6 |
IBM WebSphere Application Server 7.0 before 7.0.0.23, when a certain SSLv2 configuration with client authentication is used, allows remote attackers to bypass X.509 client-certificate authentication via unspecified vectors.
|
21-06-2012 - 04:00 | 20-06-2012 - 10:27 |