Lucene search
IbmCVE-2013-4006HistoryNov 18, 2013 - 5:23 a.m.
CVE-2013-4006
2013-11-1805:23:57
CWE-310
ibm
web.nvd.nist.gov
39
ibm
websphere
application server
was
liberty profile
security
weak permissions
cve-2013-4006
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
8.2
Confidence
High
EPSS
0.001
Percentile
41.3%
IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before 8.5.5.1 uses weak permissions for unspecified files, which allows local users to obtain sensitive information via standard filesystem operations.
Affected configurations
Node
ibmwebsphere_application_serverMatch8.5.0.0-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.1-liberty_profile
ORibmwebsphere_application_serverMatch8.5.0.2-liberty_profile
ORibmwebsphere_application_serverMatch8.5.5.0-liberty_profile
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_application_server | 8.5.0.0 | cpe:2.3:a:ibm:websphere_application_server:8.5.0.0:-:liberty_profile:*:*:*:*:* |
| ibm | websphere_application_server | 8.5.0.1 | cpe:2.3:a:ibm:websphere_application_server:8.5.0.1:-:liberty_profile:*:*:*:*:* |
| ibm | websphere_application_server | 8.5.0.2 | cpe:2.3:a:ibm:websphere_application_server:8.5.0.2:-:liberty_profile:*:*:*:*:* |
| ibm | websphere_application_server | 8.5.5.0 | cpe:2.3:a:ibm:websphere_application_server:8.5.5.0:-:liberty_profile:*:*:*:*:* |
Related
nvd
nvd
CVE-2013-4006
2013-11-18 05:23:57
openvas
openvas
prion
prion
Design/Logic Flaw
2013-11-18 05:23:00
cvelist
cvelist
CVE-2013-4006
2013-11-16 15:00:00
ibm
ibm
nessus
nessus
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
8.2
Confidence
High
EPSS
0.001
Percentile
41.3%
Related for CVE-2013-4006