VYPR
Unrated severityNVD Advisory· Published Aug 12, 2012· Updated Jun 16, 2026

CVE-2012-2963

CVE-2012-2963

Description

The administrative interface in the embedded web server on the BreakingPoint Storm appliance before 3.0 does not require authentication for the gwt/BugReport script, which allows remote attackers to obtain sensitive information by downloading a .tgz file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:h:breakingpointsystems:breakingpoint_storm_appliance:-:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:breakingpointsystems:breakingpoint_storm_appliance:-:*:*:*:*:*:*:*
    • (no CPE)range: <3.0
  • cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:*:*:*:*:*:*:*:*range: <=2.0
    • cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.2:*:*:*:*:*:*:*
    • cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.4:*:*:*:*:*:*:*
    • cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.5:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.