Lucene search

IbmCVE-2013-6330

HistoryJan 16, 2014 - 8:55 p.m.

CVE-2013-6330

2014-01-1620:55:10

CWE-200

ibm

web.nvd.nist.gov

cve-2013-6330

ibm websphere

application server

information security

vulnerability

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

45.4%

JSON

IBM WebSphere Application Server 7.x before 7.0.0.31, when simpleFileServlet static file caching is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

Affected configurations

Nvd

Node

ibmwebsphere_application_serverMatch7.0

ibmwebsphere_application_serverMatch7.0.0.1

ibmwebsphere_application_serverMatch7.0.0.2

ibmwebsphere_application_serverMatch7.0.0.3

ibmwebsphere_application_serverMatch7.0.0.10

ibmwebsphere_application_serverMatch7.0.0.11

ibmwebsphere_application_serverMatch7.0.0.12

ibmwebsphere_application_serverMatch7.0.0.13

ibmwebsphere_application_serverMatch7.0.0.14

ibmwebsphere_application_serverMatch7.0.0.15

ibmwebsphere_application_serverMatch7.0.0.16

ibmwebsphere_application_serverMatch7.0.0.17

ibmwebsphere_application_serverMatch7.0.0.18

ibmwebsphere_application_serverMatch7.0.0.19

ibmwebsphere_application_serverMatch7.0.0.21

ibmwebsphere_application_serverMatch7.0.0.22

ibmwebsphere_application_serverMatch7.0.0.23

ibmwebsphere_application_serverMatch7.0.0.24

ibmwebsphere_application_serverMatch7.0.0.25

ibmwebsphere_application_serverMatch7.0.0.27

ibmwebsphere_application_serverMatch7.0.0.28

ibmwebsphere_application_serverMatch7.0.0.29

VendorProductVersionCPE
ibmwebsphere_application_server7.0cpe:2.3:a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.1cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.2cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.3cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.10cpe:2.3:a:ibm:websphere_application_server:7.0.0.10:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.11cpe:2.3:a:ibm:websphere_application_server:7.0.0.11:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.12cpe:2.3:a:ibm:websphere_application_server:7.0.0.12:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.13cpe:2.3:a:ibm:websphere_application_server:7.0.0.13:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.14cpe:2.3:a:ibm:websphere_application_server:7.0.0.14:*:*:*:*:*:*:*
ibmwebsphere_application_server7.0.0.15cpe:2.3:a:ibm:websphere_application_server:7.0.0.15:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_application_server	7.0	cpe:2.3:a:ibm:websphere_application_server:7.0:::::::*
ibm	websphere_application_server	7.0.0.1	cpe:2.3:a:ibm:websphere_application_server:7.0.0.1:::::::*
ibm	websphere_application_server	7.0.0.2	cpe:2.3:a:ibm:websphere_application_server:7.0.0.2:::::::*
ibm	websphere_application_server	7.0.0.3	cpe:2.3:a:ibm:websphere_application_server:7.0.0.3:::::::*
ibm	websphere_application_server	7.0.0.10	cpe:2.3:a:ibm:websphere_application_server:7.0.0.10:::::::*
ibm	websphere_application_server	7.0.0.11	cpe:2.3:a:ibm:websphere_application_server:7.0.0.11:::::::*
ibm	websphere_application_server	7.0.0.12	cpe:2.3:a:ibm:websphere_application_server:7.0.0.12:::::::*
ibm	websphere_application_server	7.0.0.13	cpe:2.3:a:ibm:websphere_application_server:7.0.0.13:::::::*
ibm	websphere_application_server	7.0.0.14	cpe:2.3:a:ibm:websphere_application_server:7.0.0.14:::::::*
ibm	websphere_application_server	7.0.0.15	cpe:2.3:a:ibm:websphere_application_server:7.0.0.15:::::::*