Lucene search
IbmCVE-2013-0483HistoryApr 05, 2013 - 4:55 p.m.
CVE-2013-0483
2013-04-0516:55:01
CWE-310
ibm
web.nvd.nist.gov
26
cve-2013-0483
ibm ims enterprise suite
soap gateway
remote attackers
cleartext credentials
information security
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.002
Percentile
57.6%
The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, 2.1, and 2.2 uses cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
Affected configurations
Node
ibmims_enterprise_suiteMatch1.1
ORibmims_enterprise_suiteMatch2.1
ORibmims_enterprise_suiteMatch2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | ims_enterprise_suite | 1.1 | cpe:2.3:a:ibm:ims_enterprise_suite:1.1:*:*:*:*:*:*:* |
| ibm | ims_enterprise_suite | 2.1 | cpe:2.3:a:ibm:ims_enterprise_suite:2.1:*:*:*:*:*:*:* |
| ibm | ims_enterprise_suite | 2.2 | cpe:2.3:a:ibm:ims_enterprise_suite:2.2:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2013-04-05 16:55:00
nvd
nvd
CVE-2013-0483
2013-04-05 16:55:01
cvelist
cvelist
CVE-2013-0483
2013-04-05 16:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.002
Percentile
57.6%
Related for CVE-2013-0483