CVE-2012-2159
IBM Security AppScan Source 7.x-8.x and SPSS Data Collection Developer Library 6.0-6.0.1 - Open Redirect via IEHS
Title source: llmDescription
Open redirect vulnerability in IBM Eclipse Help System (IEHS), as used in IBM Security AppScan Source 7.x and 8.x before 8.6 and IBM SPSS Data Collection Developer Library 6.0 and 6.0.1, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21598423
Vendor Advisory x_refsource_confirm
http://www.ibm.com/support/docview.wss?uid=swg21596690
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/74832
Scores
EPSS
0.0184
EPSS Percentile
76.5%
Details
CWE
CWE-20
Status
published
Products (8)
ibm/security_appscan_source
7.0
ibm/security_appscan_source
8.0
ibm/security_appscan_source
8.0.0.1
ibm/security_appscan_source
8.0.0.2
ibm/security_appscan_source
8.5
ibm/security_appscan_source
8.5.0.1
ibm/spss_data_collection
6.0
ibm/spss_data_collection
6.0.1
Published
Jun 20, 2012
Tracked Since
Feb 18, 2026