Lucene search
HistoryNov 18, 2013 - 3:55 a.m.
CVE-2013-5454
ibm websphere portal
cve-2013-5454
remote attackers
file read
url
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
IBM WebSphere Portal 6.0 through 6.0.1.7, 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF25, and 8.0 through 8.0.0.1 CF08 allows remote attackers to read arbitrary files via a modified URL.
Affected configurations
Node
ibmwebsphere_portalMatch6.0.0.0
ORibmwebsphere_portalMatch6.0.0.1
ORibmwebsphere_portalMatch6.0.1.0
ORibmwebsphere_portalMatch6.0.1.1
ORibmwebsphere_portalMatch6.0.1.2
ORibmwebsphere_portalMatch6.0.1.3
ORibmwebsphere_portalMatch6.0.1.4
ORibmwebsphere_portalMatch6.0.1.5
ORibmwebsphere_portalMatch6.0.1.6
ORibmwebsphere_portalMatch6.1
ORibmwebsphere_portalMatch6.1.0.0
ORibmwebsphere_portalMatch6.1.0.1
ORibmwebsphere_portalMatch6.1.0.2
ORibmwebsphere_portalMatch6.1.0.3
ORibmwebsphere_portalMatch6.1.0.4
ORibmwebsphere_portalMatch6.1.0.5
ORibmwebsphere_portalMatch6.1.5.0
ORibmwebsphere_portalMatch6.1.5.1
ORibmwebsphere_portalMatch6.1.5.2
ORibmwebsphere_portalMatch6.1.5.3
ORibmwebsphere_portalMatch7.0.0.0
ORibmwebsphere_portalMatch7.0.0.1
ORibmwebsphere_portalMatch7.0.0.2
ORibmwebsphere_portalMatch8.0
ORibmwebsphere_portalMatch8.0.0.0
ORibmwebsphere_portalMatch8.0.0.1
Related
prion
prion
Code injection
2013-11-18 03:55:00
nvd
nvd
CVE-2013-5454
2013-11-18 03:55:06
nessus
nessus
cvelist
cvelist
CVE-2013-5454
2013-11-16 02:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
Related for CVE-2013-5454