← Back to CVEs
CVE-2013-3993
MEDIUMCISA KEV6.5
Description
IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted data or code, via crafted parameters in unspecified API calls.
CVE Details
CVSS v3.1 Score6.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published7/7/2014
Last Modified4/21/2026
Sourcekev
Honeypot Sightings0
CISA KEV
VendorIBM
ProductInfoSphere BigInsights
Vulnerability NameIBM InfoSphere BigInsights Invalid Input Vulnerability
KEV Date Added2022-05-25
Remediation Due Date2022-06-15
Ransomware UseKnown
Affected Products
ibm:infosphere_biginsights
Weaknesses (CWE)
CWE-22CWE-22
References
http://secunia.com/advisories/59676(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg21677445(psirt@us.ibm.com)
http://www.securityfocus.com/bid/68449(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84982(psirt@us.ibm.com)
http://secunia.com/advisories/59676(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21677445(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/68449(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84982(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3993(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.