CyberSec.Space Logo
Back to CVE Browser

CVE-2012-2561

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile38.58th
PublishedMay 21, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444.

Affected Platforms (CPE)

πŸ“¦
Hp

Business Service Management

= 9.12

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=134013352316810&w=2
πŸ”— http://osvdb.org/81981
πŸ”— http://secunia.com/advisories/49218
πŸ”— http://www.kb.cert.org/vuls/id/859230
πŸ”— http://www.securityfocus.com/bid/53556
πŸ”— http://www.securitytracker.com/id?1027075
πŸ”— http://marc.info/?l=bugtraq&m=134013352316810&w=2
πŸ”— http://osvdb.org/81981

Related Vulnerabilities

CVE-2005-345510.0

Multiple unspecified vulnerabilities in Oracle E-Business Suite and Applications 11.5 up to 11.5.10 have unknown impact and attack...

CVE-2021-16099.8

Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual W...

CVE-2021-16109.8

Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual W...

CVE-2019-126368.8

A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenti...