Unrated severityNVD Advisory· Published Aug 12, 2012· Updated Jun 16, 2026
CVE-2012-2963
CVE-2012-2963
Description
The administrative interface in the embedded web server on the BreakingPoint Storm appliance before 3.0 does not require authentication for the gwt/BugReport script, which allows remote attackers to obtain sensitive information by downloading a .tgz file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:h:breakingpointsystems:breakingpoint_storm_appliance:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:breakingpointsystems:breakingpoint_storm_appliance:-:*:*:*:*:*:*:*
- (no CPE)range: <3.0
cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:*:*:*:*:*:*:*:*range: <=2.0
- cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:breakingpointsystems:breakingpoint_storm_appliance_ctm:1.5:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- www.kb.cert.org/vuls/id/520430nvdUS Government Resource
- www.kb.cert.org/vuls/id/MAPG-8GANCCnvd
- www.secureworks.com/research/advisories/SWRX-2012-005/nvd
News mentions
0No linked articles in our index yet.