{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T11:05:46.759","vulnerabilities":[{"cve":{"id":"CVE-2012-4834","sourceIdentifier":"psirt@us.ibm.com","published":"2012-11-30T19:55:01.143","lastModified":"2025-04-11T00:51:21.963","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote attackers to read arbitrary files via a crafted URI."},{"lang":"es","value":"Una vulnerabilidad de salto de directorio en LayerLoader.jsp en el componente temático en IBM WebSphere Portal v7.0.0.1 y v7.0.0.2 antes de CF19 y v8.0 antes de CF03 permite a atacantes remotos leer archivos de su elección a través de un URI diseñada para tal fin.\r\n"}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C6ECEE98-B276-4ED6-AA5A-109EA57E9925"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf002:*:*:*:*:*:*","matchCriteriaId":"2991B76F-8E96-45A9-8B9D-942AF93755E4"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf003:*:*:*:*:*:*","matchCriteriaId":"041D220D-2088-4633-B1AA-8902AD1C6BD0"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf004:*:*:*:*:*:*","matchCriteriaId":"53B376AE-7AA9-4362-9CB2-17B3AB783FC0"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf005:*:*:*:*:*:*","matchCriteriaId":"84D744C2-DA4B-4F04-894F-7820FDC49A04"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf006:*:*:*:*:*:*","matchCriteriaId":"4713D128-6C5F-4362-A0E2-363F81D9BCA1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf007:*:*:*:*:*:*","matchCriteriaId":"67E76EE5-B618-49AA-A489-1BD7E45D391F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf008:*:*:*:*:*:*","matchCriteriaId":"DC001899-F77A-4EED-BC6D-8400FF4354EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf009:*:*:*:*:*:*","matchCriteriaId":"05426398-FE6A-4E4A-9C46-4675B5FAD915"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf010:*:*:*:*:*:*","matchCriteriaId":"29E0A9B5-945C-4859-BE83-56B34544350B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf011:*:*:*:*:*:*","matchCriteriaId":"DF8105DA-2519-428D-AB09-01EEF2FF6FDC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf012:*:*:*:*:*:*","matchCriteriaId":"B2824CB0-BBC6-4AD5-993C-91E1CF293B3C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf013:*:*:*:*:*:*","matchCriteriaId":"56AF2117-2F73-4729-84DC-72B8B235C581"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf014:*:*:*:*:*:*","matchCriteriaId":"303EE4F0-9C7A-4B0B-8BBB-852C68A802E7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf015:*:*:*:*:*:*","matchCriteriaId":"4967BA17-DD56-42A7-812A-7B6EE74C6E03"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf016:*:*:*:*:*:*","matchCriteriaId":"9DD708E8-67BE-48D7-AD76-FDA753426862"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf017:*:*:*:*:*:*","matchCriteriaId":"AC8DAFF7-9410-40E2-805A-580B82EA0667"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf018:*:*:*:*:*:*","matchCriteriaId":"D06D62C6-13EF-42BA-BEBE-C3F9A42F5AA1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:*:*:*:*:*:*:*","matchCriteriaId":"9E4FF84B-A17F-464B-A718-67C44D2C69BC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf002:*:*:*:*:*:*","matchCriteriaId":"9E1F6463-557F-4582-95AD-93B2F1E12B62"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf003:*:*:*:*:*:*","matchCriteriaId":"FCBC4670-6513-4DE9-9187-5A8A5D088A67"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf004:*:*:*:*:*:*","matchCriteriaId":"E92E848E-ECC3-46F9-9AB6-72260B791EFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf005:*:*:*:*:*:*","matchCriteriaId":"EDF6E3B5-8707-4D70-AD03-8E35E8DC69A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf006:*:*:*:*:*:*","matchCriteriaId":"7EB4341E-D73A-430F-A25E-879E01E08E6C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf007:*:*:*:*:*:*","matchCriteriaId":"3B71DD10-7D04-4191-8453-6031134828B1"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf008:*:*:*:*:*:*","matchCriteriaId":"C3CC8276-B821-49FD-A2D1-063982D263C6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf009:*:*:*:*:*:*","matchCriteriaId":"FBA7875F-F59E-4C42-9776-0F1DB713AAB2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf010:*:*:*:*:*:*","matchCriteriaId":"335D6870-8F86-4218-B3DD-0A382FEF0DA6"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf011:*:*:*:*:*:*","matchCriteriaId":"B469E735-0DCE-4616-B3FE-DED75FEAC642"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf012:*:*:*:*:*:*","matchCriteriaId":"E0ACFABA-E470-4043-B8E7-ACE2F9781D44"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf013:*:*:*:*:*:*","matchCriteriaId":"8D2FA62F-EEB7-4312-9359-FDA8E4743A81"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf014:*:*:*:*:*:*","matchCriteriaId":"5D8ABD15-49DE-4C4A-B9C0-5696BC1899C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf015:*:*:*:*:*:*","matchCriteriaId":"A2D98D3D-18DC-47CF-BED8-CD61A531D858"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf016:*:*:*:*:*:*","matchCriteriaId":"9326CFC3-D9A7-43CE-8673-FD009F7A1F44"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf017:*:*:*:*:*:*","matchCriteriaId":"B34D73EE-1E9D-4896-B2A2-D1463C13F399"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:7.0.0.2:cf018:*:*:*:*:*:*","matchCriteriaId":"96B7FB90-D1F8-4D83-B954-A1990400BC27"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*","matchCriteriaId":"C90EF7A4-8181-42C3-BB95-395D0DD94C14"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf01:*:*:*:*:*:*","matchCriteriaId":"8A5566C6-E42F-4786-A8FC-59BE7EB47296"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf02:*:*:*:*:*:*","matchCriteriaId":"31C0EC0E-0106-4333-8401-0F655C0F5850"}]}]}],"references":[{"url":"http://secunia.com/advisories/51281","source":"psirt@us.ibm.com","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM76354","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"http://www.ibm.com/connections/blogs/PSIRT/entry/security_vulnerability_in_theme_component_for_websphere_portal_versions_7_0_0_x_and_8_0_cve2012_48344","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21617713","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg24033155","source":"psirt@us.ibm.com","tags":["Patch","Third Party Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/78914","source":"psirt@us.ibm.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://secunia.com/advisories/51281","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www-01.ibm.com/support/docview.wss?uid=swg1PM76354","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.ibm.com/connections/blogs/PSIRT/entry/security_vulnerability_in_theme_component_for_websphere_portal_versions_7_0_0_x_and_8_0_cve2012_48344","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg21617713","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.ibm.com/support/docview.wss?uid=swg24033155","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Third Party Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/78914","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]}]}}]}