CVE-2012-2172 in Ds4100info

Summary

Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

04/04/2012

Disclosure

06/22/2012

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
61081	IBM Ds4100 SoftwareRegistration.do cross site scripting	79	Proof-of-Concept	Official fix	CVE-2012-2172

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to know what is going to be exploited?

We predict KEV entries!