CVE-2012-1085 : Unspecified vulnerability in the BE User Switch (beuserswitch) extension 0.0.1 for TYPO3 allows remote attackers to obta

Unspecified vulnerability in the BE User Switch (beuserswitch) extension 0.0.1 for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.

Published 2012-02-14 17:55:04

Updated 2017-08-29 01:31:12

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2012-1085

Probability of exploitation activity in the next 30 days: 0.36%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2012-1085

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2012-1085

http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/

Several vulnerabilities in third party extensions
Vendor Advisory

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/72973

TYPO3 BE User Switch Extension unspecified information disclosure CVE-2012-1085 Vulnerability Report
http://www.securityfocus.com/bid/51852

TYPO3 BE User Switch Extension Cross Site Scripting and Information Disclosure Vulnerabilities

CVEs referencing this url

Products affected by CVE-2012-1085

Typo3 » Beuserswitch » Version: 0.0.1
cpe:2.3:a:typo3:beuserswitch:0.0.1:*:*:*:*:*:*:*
Matching versions
When used together with: Typo3 » Typo3

Vulnerability Details : CVE-2012-1085

Exploit prediction scoring system (EPSS) score for CVE-2012-1085

CVSS scores for CVE-2012-1085

References for CVE-2012-1085

Products affected by CVE-2012-1085