Lucene search
IbmCVE-2013-4049HistorySep 16, 2013 - 6:24 p.m.
CVE-2013-4049
2013-09-1618:24:48
ibm
web.nvd.nist.gov
17
ibm
spss
analytical decision management
vulnerability
file upload
remote code execution
cve-2013-4049
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.003
Percentile
65.2%
Unrestricted file upload vulnerability in IBM SPSS Analytical Decision Management 6.1 before IF1, 6.2 before IF1, and 7.0 before FP1 IF6 allows remote authenticated users to execute arbitrary code by uploading and accessing a JSP file.
Affected configurations
Node
ibmspss_analytical_decision_managementMatch6.1.0.0
ORibmspss_analytical_decision_managementMatch6.2.0.0
ORibmspss_analytical_decision_managementMatch7.0.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | spss_analytical_decision_management | 6.1.0.0 | cpe:2.3:a:ibm:spss_analytical_decision_management:6.1.0.0:*:*:*:*:*:*:* |
| ibm | spss_analytical_decision_management | 6.2.0.0 | cpe:2.3:a:ibm:spss_analytical_decision_management:6.2.0.0:*:*:*:*:*:*:* |
| ibm | spss_analytical_decision_management | 7.0.0.0 | cpe:2.3:a:ibm:spss_analytical_decision_management:7.0.0.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2013-4049
2013-09-16 18:24:48
prion
prion
Unrestricted file upload
2013-09-16 18:24:00
cvelist
cvelist
CVE-2013-4049
2013-09-16 16:00:00
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.003
Percentile
65.2%
Related for CVE-2013-4049