4.3

CVE-2013-6730

EPSS 0.19%
Veröffentlicht 04.03.2014 22:55:03
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x before 7.0.0.2 CF27, and 8.0.0.x before 8.0.0.1 CF10, when the wcm.path.traversal.security setting is enabled, allows remote attackers to bypass intended read restrictions on an item by accessing that item within search results.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Websphere Portal Version6.1.0.0

Ibm ≫ Websphere Portal Version6.1.0.1

Ibm ≫ Websphere Portal Version6.1.0.2

Ibm ≫ Websphere Portal Version6.1.0.3

Ibm ≫ Websphere Portal Version6.1.0.4

Ibm ≫ Websphere Portal Version6.1.0.5

Ibm ≫ Websphere Portal Version6.1.0.6

Ibm ≫ Websphere Portal Version6.1.5.0

Ibm ≫ Websphere Portal Version6.1.5.1

Ibm ≫ Websphere Portal Version6.1.5.2

Ibm ≫ Websphere Portal Version6.1.5.3

Ibm ≫ Websphere Portal Version7.0.0.0

Ibm ≫ Websphere Portal Version7.0.0.1

Ibm ≫ Websphere Portal Version7.0.0.2

Ibm ≫ Websphere Portal Version8.0.0.0

Ibm ≫ Websphere Portal Version8.0.0.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.19%	0.373

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

http://www-01.ibm.com/support/docview.wss?uid=swg1PI07185

http://www-01.ibm.com/support/docview.wss?uid=swg21665915

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/89363

https://nvd.nist.gov/vuln/detail/CVE-2013-6730

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-6730

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-6730

EUVD