#VU43714 Information disclosure in Fortify Software Security Center - CVE-2012-3249
Published: August 16, 2012 / Updated: August 11, 2020
Vulnerability identifier: #VU43714
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2012-3249
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Fortify Software Security Center
Fortify Software Security Center
Software vendor:
OpenText
OpenText
Description
The vulnerability allows a remote #AU# to gain access to sensitive information.
HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.
Remediation
Install update from vendor's website.