Executive Summary

Informations
Name CVE-2012-4820 First vendor Publication 2013-01-10
Vendor Cve Last vendor Modification 2019-07-18

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4820

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 61
Application 23
Application 29
Application 3
Application 16
Application 4
Application 11
Application 2
Application 2
Application 27
Application 1
Application 2
Application 1
Application 1
Application 1
Hardware 1

Snort® IPS/IDS

Date Description
2018-02-06 IBM Java invokeWithPrivilege method call attempt
RuleID : 45351 - Revision : 2 - Type : FILE-JAVA
2018-02-06 IBM Java invokeWithClassLoaders method call attempt
RuleID : 45350 - Revision : 2 - Type : FILE-JAVA
2018-02-06 IBM Java invokeWithPrivilege method call attempt
RuleID : 45349 - Revision : 2 - Type : FILE-JAVA
2018-02-06 IBM Java invokeWithClassLoaders method call attempt
RuleID : 45348 - Revision : 2 - Type : FILE-JAVA

Nessus® Vulnerability Scanner

Date Description
2014-11-08 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1455.nasl - Type : ACT_GATHER_INFO
2014-11-08 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2013-1456.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1485.nasl - Type : ACT_GATHER_INFO
2012-12-17 Name : The remote host has software installed that is affected by multiple vulnerabi...
File : lotus_notes_8_5_3_fp3.nasl - Type : ACT_GATHER_INFO
2012-11-16 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1465.nasl - Type : ACT_GATHER_INFO
2012-11-16 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1466.nasl - Type : ACT_GATHER_INFO
2012-11-16 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-1467.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
AIXAPAR http://www-01.ibm.com/support/docview.wss?uid=swg1IV29654
BID http://www.securityfocus.com/bid/55495
BUGTRAQ http://seclists.org/bugtraq/2012/Sep/38
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21615705
http://www-01.ibm.com/support/docview.wss?uid=swg21615800
http://www-01.ibm.com/support/docview.wss?uid=swg21616490
http://www-01.ibm.com/support/docview.wss?uid=swg21616594
http://www-01.ibm.com/support/docview.wss?uid=swg21616616
http://www-01.ibm.com/support/docview.wss?uid=swg21616617
http://www-01.ibm.com/support/docview.wss?uid=swg21616652
http://www-01.ibm.com/support/docview.wss?uid=swg21616708
http://www-01.ibm.com/support/docview.wss?uid=swg21621154
http://www-01.ibm.com/support/docview.wss?uid=swg21631786
https://www-304.ibm.com/support/docview.wss?uid=swg21616546
REDHAT http://rhn.redhat.com/errata/RHSA-2012-1465.html
http://rhn.redhat.com/errata/RHSA-2012-1466.html
http://rhn.redhat.com/errata/RHSA-2012-1467.html
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://rhn.redhat.com/errata/RHSA-2013-1456.html
SECUNIA http://secunia.com/advisories/51326
http://secunia.com/advisories/51327
http://secunia.com/advisories/51328
http://secunia.com/advisories/51393
http://secunia.com/advisories/51634
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/78764

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
Date Informations
2021-05-05 01:11:48
  • Multiple Updates
2021-05-04 12:22:58
  • Multiple Updates
2021-04-22 01:27:24
  • Multiple Updates
2020-05-23 01:49:48
  • Multiple Updates
2020-05-23 00:34:46
  • Multiple Updates
2019-07-18 17:19:11
  • Multiple Updates
2019-06-15 12:04:47
  • Multiple Updates
2019-06-14 12:04:43
  • Multiple Updates
2018-07-13 01:04:56
  • Multiple Updates
2017-08-29 09:24:02
  • Multiple Updates
2016-06-28 22:04:36
  • Multiple Updates
2016-04-26 22:17:46
  • Multiple Updates
2014-11-08 13:30:18
  • Multiple Updates
2014-02-17 11:13:38
  • Multiple Updates
2013-10-31 13:19:31
  • Multiple Updates
2013-08-27 13:20:09
  • Multiple Updates
2013-05-30 13:23:23
  • Multiple Updates
2013-05-10 22:46:58
  • Multiple Updates
2013-01-12 13:21:27
  • Multiple Updates
2013-01-11 21:23:39
  • Multiple Updates
2013-01-11 17:20:21
  • Multiple Updates
2013-01-11 13:22:00
  • First insertion