CVE-2012-5767 : Unspecified vulnerability in the web interface on the IBM TS3500 Tape Library wi

Unspecified vulnerability in the web interface on the IBM TS3500 Tape Library with firmware before C260 allows remote authenticated users to gain privileges via unspecified vectors.

Published 2013-02-27 16:55:02

Updated 2025-04-11 00:51:22

Source IBM Corporation

View at NVD, CVE.org

Products affected by CVE-2012-5767

IBM » Ts3500 Tape Library Firmware
Versions up to, including, (<=) c080
cpe:2.3:a:ibm:ts3500_tape_library_firmware:*:*:*:*:*:*:*:*
Matching versions
IBM » Ts3500 Tape Library » Version: 3584
cpe:2.3:h:ibm:ts3500_tape_library:3584:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2012-5767

EPSS FAQ

0.32%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 52 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-5767

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.5	MEDIUM	AV:N/AC:L/Au:S/C:P/I:P/A:P	8.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2012-5767

http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004282

IBM Security Bulletin: IBM TS3500 Tape Library Update for Security Vulnerability in Web User Interface (CVE-2012-5767)
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/80272

IBM System Storage TS3500 Tape Library Web interface privilege escalation CVE-2012-5767 Vulnerability Report

Jump to

Vulnerability Details : CVE-2012-5767

Products affected by CVE-2012-5767

Exploit prediction scoring system (EPSS) score for CVE-2012-5767

CVSS scores for CVE-2012-5767

References for CVE-2012-5767