Lucene search
IbmCVE-2013-0544HistoryApr 24, 2013 - 10:28 a.m.
CVE-2013-0544
2013-04-2410:28:37
CWE-22
ibm
web.nvd.nist.gov
39
cve-2013-0544
ibm
websphere
application server
directory traversal
vulnerability
linux
unix
remote
authentication
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
44.7%
Directory traversal vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 on Linux and UNIX allows remote authenticated users to modify data via unspecified vectors.
Affected configurations
Node
ibmwebsphere_application_serverMatch6.1.0.0
ORibmwebsphere_application_serverMatch6.1.0.1
ORibmwebsphere_application_serverMatch6.1.0.2
ORibmwebsphere_application_serverMatch6.1.0.3
ORibmwebsphere_application_serverMatch6.1.0.5
ORibmwebsphere_application_serverMatch6.1.0.7
ORibmwebsphere_application_serverMatch6.1.0.9
ORibmwebsphere_application_serverMatch6.1.0.11
ORibmwebsphere_application_serverMatch6.1.0.12
ORibmwebsphere_application_serverMatch6.1.0.13
ORibmwebsphere_application_serverMatch6.1.0.14
ORibmwebsphere_application_serverMatch6.1.0.15
ORibmwebsphere_application_serverMatch6.1.0.17
ORibmwebsphere_application_serverMatch6.1.0.19
ORibmwebsphere_application_serverMatch6.1.0.21
ORibmwebsphere_application_serverMatch6.1.0.23
ORibmwebsphere_application_serverMatch6.1.0.25
ORibmwebsphere_application_serverMatch6.1.0.27
ORibmwebsphere_application_serverMatch6.1.0.29
ORibmwebsphere_application_serverMatch6.1.0.31
ORibmwebsphere_application_serverMatch6.1.0.33
ORibmwebsphere_application_serverMatch6.1.0.35
ORibmwebsphere_application_serverMatch6.1.0.37
ORibmwebsphere_application_serverMatch6.1.0.39
ORibmwebsphere_application_serverMatch6.1.0.41
ORibmwebsphere_application_serverMatch6.1.0.43
ORibmwebsphere_application_serverMatch6.1.0.45
linuxlinux_kernelMatch-
Node
ibmwebsphere_application_serverMatch7.0.0.1
ORibmwebsphere_application_serverMatch7.0.0.2
ORibmwebsphere_application_serverMatch7.0.0.3
ORibmwebsphere_application_serverMatch7.0.0.4
ORibmwebsphere_application_serverMatch7.0.0.5
ORibmwebsphere_application_serverMatch7.0.0.6
ORibmwebsphere_application_serverMatch7.0.0.7
ORibmwebsphere_application_serverMatch7.0.0.8
ORibmwebsphere_application_serverMatch7.0.0.9
ORibmwebsphere_application_serverMatch7.0.0.11
ORibmwebsphere_application_serverMatch7.0.0.13
ORibmwebsphere_application_serverMatch7.0.0.15
ORibmwebsphere_application_serverMatch7.0.0.17
ORibmwebsphere_application_serverMatch7.0.0.19
ORibmwebsphere_application_serverMatch7.0.0.21
ORibmwebsphere_application_serverMatch7.0.0.23
ORibmwebsphere_application_serverMatch7.0.0.25
ORibmwebsphere_application_serverMatch7.0.0.27
linuxlinux_kernelMatch-
Node
ibmwebsphere_application_serverMatch8.0.0.0
ORibmwebsphere_application_serverMatch8.0.0.1
ORibmwebsphere_application_serverMatch8.0.0.2
ORibmwebsphere_application_serverMatch8.0.0.3
ORibmwebsphere_application_serverMatch8.0.0.4
ORibmwebsphere_application_serverMatch8.0.0.5
linuxlinux_kernelMatch-
Node
ibmwebsphere_application_serverMatch8.5.0.0
ORibmwebsphere_application_serverMatch8.5.0.1
linuxlinux_kernelMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_application_server | 6.1.0.0 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.1 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.2 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.3 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.5 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.7 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.9 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.11 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.12 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:* |
| ibm | websphere_application_server | 6.1.0.13 | cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2013-04-24 10:28:00
cvelist
cvelist
CVE-2013-0544
2013-04-24 10:00:00
nvd
nvd
CVE-2013-0544
2013-04-24 10:28:37
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities -12 (Jan 2016)
2016-01-20 00:00:00
ibm
ibm
nessus
nessus
IBM WebSphere Application Server 7.0 < Fix Pack 29 Multiple Vulnerabilities
2013-07-19 00:00:00
IBM WebSphere Application Server 8.0 < Fix Pack 6 Multiple Vulnerabilities
2013-05-10 00:00:00
IBM WebSphere Application Server 8.5 < Fix Pack 2 Multiple Vulnerabilities
2013-05-10 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
44.7%
Related for CVE-2013-0544