Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2285


Vulnerability Score 6.8 6.8
CVE Id CVE-2012-2285
Last Modified 21 Mar 2013 11:10:16
Published 29 Aug 2012 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



EMC Cloud Tiering Appliance (aka CTA, formerly FMA) 9.0 and earlier, and Cloud Tiering Appliance Virtual Edition (CTA/VE) 9.0 and earlier, allows remote attackers to obtain GUI administrative access by sending a crafted file during the authentication phase.

Vulnerable Systems


  • Emc Cloud Tiering Appliance Virtual Edition 9.0


BUGTRAQ - 20120828 ESA-2012-034: EMC Cloud Tiering Appliance (CTA) Authentication Bypass Vulnerability

SECTRACK - 1027448

XF - emc-cloud-gui-sec-bypass(78110)

SECUNIA - 50393

OSVDB - 85050

Last Updated: 27 May 2016 10:47:25