CVE-2013-0523

🗓️ 21 Jun 2013 19:01:55Reported by ibmType

IBM WebSphere Commerce Enterprise versions 5.6.x through 5.6.1.5, 6.0.x through 6.0.0.11, and 7.0.x through 7.0.0.7 allows remote attackers to obtain sensitive information via a padding oracle attack

Reporter	Title	Published	Views	Family All 5
securityvulns	[CVE-2013-0523] IBM WebSphere Commerce: Encrypted URL Parameter Vulnerable to Padding Oracle Attacks	19 Jul 201300:00	–	securityvulns
securityvulns	IBM WebSphere information leakage	19 Jul 201300:00	–	securityvulns
Prion	Design/Logic Flaw	21 Jun 201319:55	–	prion
Cvelist	CVE-2013-0523	21 Jun 201319:00	–	cvelist
NVD	CVE-2013-0523	21 Jun 201319:55	–	nvd

Nvd

Node

ibm websphere_commerceMatch5.6.1

ibm websphere_commerceMatch5.6.1.1

ibm websphere_commerceMatch5.6.1.2

ibm websphere_commerceMatch5.6.1.3

ibm websphere_commerceMatch5.6.1.4

ibm websphere_commerceMatch5.6.1.5

Node

ibm websphere_commerceMatch6.0.0.0

ibm websphere_commerceMatch6.0.0.1

ibm websphere_commerceMatch6.0.0.2

ibm websphere_commerceMatch6.0.0.3

ibm websphere_commerceMatch6.0.0.4

ibm websphere_commerceMatch6.0.0.5

ibm websphere_commerceMatch6.0.0.6

ibm websphere_commerceMatch6.0.0.7

ibm websphere_commerceMatch6.0.0.8

ibm websphere_commerceMatch6.0.0.9

ibm websphere_commerceMatch6.0.0.10

ibm websphere_commerceMatch6.0.0.11

Node

ibm websphere_commerceMatch7.0

ibm websphere_commerceMatch7.0.0.1

ibm websphere_commerceMatch7.0.0.2

ibm websphere_commerceMatch7.0.0.3

ibm websphere_commerceMatch7.0.0.4

ibm websphere_commerceMatch7.0.0.5

ibm websphere_commerceMatch7.0.0.6

ibm websphere_commerceMatch7.0.0.7

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/82541
www-01	www.www-01.ibm.com/support/docview.wss
www-01	www.www-01.ibm.com/support/docview.wss
vsecurity	www.vsecurity.com/resources/advisory/20130619-1/
vsecurity	www.vsecurity.com/advisory/20130619-1.txt

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Jun 2013 19:55Current

6.2Medium risk

Vulners AI Score6.2

CVSS24.3

EPSS0.004

CWE-200