5.4
CVE-2013-3039
- EPSS 0.43%
- Veröffentlicht 12.09.2013 13:28:32
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Rational Requirements Composer before 4.0.4 does not properly perform authentication, which has unspecified impact and remote attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Rational Requirements Composer Version <= 4.0.3
Ibm ≫ Rational Requirements Composer Version4.0.0
Ibm ≫ Rational Requirements Composer Version4.0.1
Ibm ≫ Rational Requirements Composer Version4.0.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.343 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.4 | 5.5 | 6.4 |
AV:A/AC:M/Au:N/C:P/I:P/A:P
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
http://www-01.ibm.com/support/docview.wss?uid=swg21645927
https://exchange.xforce.ibmcloud.com/vulnerabilities/84709