Lucene search

[email protected]CVE-2013-0494

HistoryAug 09, 2013 - 11:55 p.m.

CVE-2013-0494

2013-08-0923:55:00

CWE-399

[email protected]

web.nvd.nist.gov

ibm

sterling

b2b integrator

cve-2013-0494

denial of service

nvd

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.7%

JSON

IBM Sterling B2B Integrator 5.0 and 5.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted HTTP (1) Range or (2) Request-Range header.

CPENameOperatorVersion
ibm:sterling_b2b_integratoribm sterling b2b integratoreq5.0
ibm:sterling_b2b_integratoribm sterling b2b integratoreq5.1

CPE	Name	Operator	Version
ibm:sterling_b2b_integrator	ibm sterling b2b integrator	eq	5.0
ibm:sterling_b2b_integrator	ibm sterling b2b integrator	eq	5.1

References

www-01.ibm.com/support/docview.wss?uid=swg1IC82726

www-01.ibm.com/support/docview.wss?uid=swg21627989

exchange.xforce.ibmcloud.com/vulnerabilities/82009

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.005 Low

EPSS

Percentile

75.7%

JSON

Related for CVE-2013-0494

ibm1 prion1 cvelist1