Lucene search

[email protected]CVE-2013-0465

HistoryFeb 22, 2013 - 8:55 p.m.

CVE-2013-0465

2013-02-2220:55:01

[email protected]

web.nvd.nist.gov

cve-2013-0465

ibm

websphere

cast iron

ldap

authentication

remote attackers

sensitive information

data modification

denial of service

nvd

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.7%

JSON

Unspecified vulnerability in the IBM WebSphere Cast Iron physical and virtual appliance 6.0 and 6.1 before 6.1.0.15 and 6.3 before 6.3.0.1, when LDAP authentication is enabled, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors.

Affected configurations

NVD

Node

ibmwebshere_cast_iron_cloud_integrationMatch6.0.0.0

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.0

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.1

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.2

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.3

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.6

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.9

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.12

ibmwebshere_cast_iron_cloud_integrationMatch6.3.0.0

Node

ibmwebshere_cast_iron_cloud_integrationMatch6.0.0.0

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.0

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.1

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.2

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.3

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.6

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.9

ibmwebshere_cast_iron_cloud_integrationMatch6.1.0.12

ibmwebshere_cast_iron_cloud_integrationMatch6.3.0.0

CPENameOperatorVersion
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.0.0.0
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.0
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.1
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.2
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.3
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.6
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.9
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.1.0.12
ibm:webshere_cast_iron_cloud_integrationibm webshere cast iron cloud integrationeq6.3.0.0

CPE	Name	Operator	Version
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.0.0.0
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.0
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.1
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.2
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.3
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.6
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.9
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.1.0.12
ibm:webshere_cast_iron_cloud_integration	ibm webshere cast iron cloud integration	eq	6.3.0.0

References

www-01.ibm.com/support/docview.wss?uid=swg1LI77155

www-01.ibm.com/support/docview.wss?uid=swg21623324

exchange.xforce.ibmcloud.com/vulnerabilities/81061

5.4 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

6.8 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.7%

JSON

Related for CVE-2013-0465

prion1 cvelist1 nvd1