Vulnerability Details : CVE-2012-1085
Unspecified vulnerability in the BE User Switch (beuserswitch) extension 0.0.1 for TYPO3 allows remote attackers to obtain sensitive information via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2012-1085
Probability of exploitation activity in the next 30 days: 0.36%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-1085
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2012-1085
-
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2012-001/
Several vulnerabilities in third party extensionsVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/72973
TYPO3 BE User Switch Extension unspecified information disclosure CVE-2012-1085 Vulnerability Report
-
http://www.securityfocus.com/bid/51852
TYPO3 BE User Switch Extension Cross Site Scripting and Information Disclosure Vulnerabilities
Products affected by CVE-2012-1085
- cpe:2.3:a:typo3:beuserswitch:0.0.1:*:*:*:*:*:*:*