CVE-2012-4021

EUVD-2012-3965
MosP kintai kanri before 4.1.0 does not properly perform authentication, which allows remote authenticated users to impersonate arbitrary user accounts, and consequently obtain sensitive information or modify settings, via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 41%
Affected Products (NVD)
VendorProductVersion
mospkintai_kanri
𝑥
≤ 4.0.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN52264310/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000097
http://secunia.com/advisories/51110
http://www.securityfocus.com/bid/56369
http://jvn.jp/en/jp/JVN52264310/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000097
http://secunia.com/advisories/51110
http://www.securityfocus.com/bid/56369