Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIbmCVE-2013-2979
HistoryAug 22, 2013 - 10:55 p.m.

CVE-2013-2979

2013-08-2222:55:04
CWE-22
ibm
web.nvd.nist.gov
24
ibm
optim performance manager
cve-2013-2979
vulnerability
directory traversal
infosphere

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

42.4%

JSON

Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a crafted URL.

Affected configurations

Nvd
Node
ibminfosphere_optim_performance_managerMatch5.1.0
OR
ibminfosphere_optim_performance_managerMatch5.1.1.0
OR
ibminfosphere_optim_performance_managerMatch5.1.1.1
OR
ibmoptim_performance_managerMatch4.1.1
VendorProductVersionCPE
ibminfosphere_optim_performance_manager5.1.0cpe:2.3:a:ibm:infosphere_optim_performance_manager:5.1.0:*:*:*:*:*:*:*
ibminfosphere_optim_performance_manager5.1.1.0cpe:2.3:a:ibm:infosphere_optim_performance_manager:5.1.1.0:*:*:*:*:*:*:*
ibminfosphere_optim_performance_manager5.1.1.1cpe:2.3:a:ibm:infosphere_optim_performance_manager:5.1.1.1:*:*:*:*:*:*:*
ibmoptim_performance_manager4.1.1cpe:2.3:a:ibm:optim_performance_manager:4.1.1:*:*:*:*:*:*:*

Related

prion 1
ibm 2
nvd 1
cvelist 1
prion
prion
Directory traversal
2013-08-22 22:55:00
ibm
ibm
Security Bulletin: IBM PureData System for Operational Analytics A1791 is affected by a directory traversal arbitrary file download vulnerability in the database performance monitor (CVE-2013-2979)
2022-09-25 21:06:56
Security Bulletin: InfoSphere Optim Performance Manager is affected by a directory traversal and arbitrary file download vulnerability (CVE-2013-2979)
2022-09-25 21:06:56
nvd
nvd
CVE-2013-2979
2013-08-22 22:55:04
cvelist
cvelist
CVE-2013-2979
2013-08-22 22:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.001

Percentile

42.4%

JSON
Related for CVE-2013-2979
prion1ibm2nvd1cvelist1