Lucene search
HistoryFeb 14, 2014 - 1:10 p.m.
CVE-2013-5400
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.06
Percentile
93.5%
An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain “local environment” access via unknown vectors.
Affected configurations
Node
ibmplatform_symphonyMatch5.2developer
ORibmplatform_symphonyMatch6.1.0developer
ORibmplatform_symphonyMatch6.1.1developer
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | platform_symphony | 5.2 | cpe:2.3:a:ibm:platform_symphony:5.2:*:*:*:developer:*:*:* |
| ibm | platform_symphony | 6.1.0 | cpe:2.3:a:ibm:platform_symphony:6.1.0:*:*:*:developer:*:*:* |
| ibm | platform_symphony | 6.1.1 | cpe:2.3:a:ibm:platform_symphony:6.1.1:*:*:*:developer:*:*:* |
Related
openvas
openvas
IBM Platform Symphony Developer Edition Authentication Bypass Vulnerability
2014-02-19 00:00:00
prion
prion
Hardcoded credentials
2014-02-14 13:10:00
zdi
zdi
IBM Platform Symphony DE Auth-Bypass Remote Code Execution Vulnerability
2014-04-03 00:00:00
cvelist
cvelist
CVE-2013-5400
2014-02-14 02:00:00
ibm
ibm
Security Bulletin: IBM Platform Symphony (CVE-2013-5400)
2018-06-18 01:24:30
cve
cve
CVE-2013-5400
2014-02-14 13:10:30
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
Low
EPSS
0.06
Percentile
93.5%
Related for NVD:CVE-2013-5400