Lucene search
IbmCVE-2013-6722HistoryFeb 14, 2014 - 1:10 p.m.
CVE-2013-6722
2014-02-1413:10:30
ibm
web.nvd.nist.gov
24
cve-2013-6722
unrestricted file upload
vulnerability
ibm websphere portal
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
69.8%
Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet in IBM WebSphere Portal 7.x before 7.0.0.2 CF27 and 8.x through 8.0.0.1 CF09 allows remote attackers to cause a denial of service or modify data via unspecified vectors.
Affected configurations
Node
ibmwebsphere_portalMatch7.0.0.0
ORibmwebsphere_portalMatch7.0.0.0cf001
ORibmwebsphere_portalMatch7.0.0.1
ORibmwebsphere_portalMatch7.0.0.1cf002
ORibmwebsphere_portalMatch7.0.0.1cf003
ORibmwebsphere_portalMatch7.0.0.1cf004
ORibmwebsphere_portalMatch7.0.0.1cf005
ORibmwebsphere_portalMatch7.0.0.1cf006
ORibmwebsphere_portalMatch7.0.0.1cf007
ORibmwebsphere_portalMatch7.0.0.1cf008
ORibmwebsphere_portalMatch7.0.0.1cf009
ORibmwebsphere_portalMatch7.0.0.1cf010
ORibmwebsphere_portalMatch7.0.0.1cf019
ORibmwebsphere_portalMatch7.0.0.2
ORibmwebsphere_portalMatch7.0.0.2cf011
ORibmwebsphere_portalMatch7.0.0.2cf012
ORibmwebsphere_portalMatch7.0.0.2cf013
ORibmwebsphere_portalMatch7.0.0.2cf014
ORibmwebsphere_portalMatch7.0.0.2cf015
ORibmwebsphere_portalMatch7.0.0.2cf016
ORibmwebsphere_portalMatch7.0.0.2cf017
ORibmwebsphere_portalMatch7.0.0.2cf018
ORibmwebsphere_portalMatch7.0.0.2cf019
ORibmwebsphere_portalMatch7.0.0.2cf020
ORibmwebsphere_portalMatch7.0.0.2cf021
ORibmwebsphere_portalMatch7.0.0.2cf022
ORibmwebsphere_portalMatch7.0.0.2cf23
ORibmwebsphere_portalMatch7.0.0.2cf24
ORibmwebsphere_portalMatch7.0.0.2cf25
ORibmwebsphere_portalMatch7.0.0.2cf26
ORibmwebsphere_portalMatch7.0.0.2cf27
Node
ibmwebsphere_portalMatch8.0
ORibmwebsphere_portalMatch8.0.0.0
ORibmwebsphere_portalMatch8.0.0.0cf01
ORibmwebsphere_portalMatch8.0.0.0cf02
ORibmwebsphere_portalMatch8.0.0.0cf03
ORibmwebsphere_portalMatch8.0.0.0cf04
ORibmwebsphere_portalMatch8.0.0.0cf05
ORibmwebsphere_portalMatch8.0.0.1
ORibmwebsphere_portalMatch8.0.0.1cf04
ORibmwebsphere_portalMatch8.0.0.1cf05
ORibmwebsphere_portalMatch8.0.0.1cf06
ORibmwebsphere_portalMatch8.0.0.1cf07
ORibmwebsphere_portalMatch8.0.0.1cf08
ORibmwebsphere_portalMatch8.0.0.1cf09
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_portal | 7.0.0.0 | cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.0 | cpe:2.3:a:ibm:websphere_portal:7.0.0.0:cf001:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:*:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf002:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf003:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf004:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf005:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf006:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf007:*:*:*:*:*:* |
| ibm | websphere_portal | 7.0.0.1 | cpe:2.3:a:ibm:websphere_portal:7.0.0.1:cf008:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2013-6722
2014-02-14 02:00:00
nessus
nessus
nvd
nvd
CVE-2013-6722
2014-02-14 13:10:30
prion
prion
Unrestricted file upload
2014-02-14 13:10:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.003
Percentile
69.8%
Related for CVE-2013-6722