CVE-2012-2159

IBM Security AppScan Source 7.x-8.x and SPSS Data Collection Developer Library 6.0-6.0.1 - Open Redirect via IEHS

Title source: llm
STIX 2.1

Description

Open redirect vulnerability in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x before 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

References (3)

Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21598423
Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21596690
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74832

Scores

EPSS 0.0184
EPSS Percentile 76.5%

Details

CWE
CWE-20
Status published
Products (8)
ibm/security_appscan_source 7.0
ibm/security_appscan_source 8.0
ibm/security_appscan_source 8.0.0.1
ibm/security_appscan_source 8.0.0.2
ibm/security_appscan_source 8.5
ibm/security_appscan_source 8.5.0.1
ibm/spss_data_collection 6.0
ibm/spss_data_collection 6.0.1
Published Jun 20, 2012
Tracked Since Feb 18, 2026