← Voltar para CVEs
CVE-2013-3993
MEDIUMCISA KEV6.5
Descricao
IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted data or code, via crafted parameters in unspecified API calls.
Detalhes CVE
Pontuacao CVSS v3.16.5
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosLOW
Interacao do usuarioNONE
Publicado7/7/2014
Ultima modificacao4/21/2026
Fontekev
Avistamentos honeypot0
CISA KEV
FornecedorIBM
ProdutoInfoSphere BigInsights
Nome da vulnerabilidadeIBM InfoSphere BigInsights Invalid Input Vulnerability
Data inclusao KEV2022-05-25
Prazo de remediacao2022-06-15
Uso em ransomwareKnown
Produtos afetados
ibm:infosphere_biginsights
Fraquezas (CWE)
CWE-22CWE-22
Referencias
http://secunia.com/advisories/59676(psirt@us.ibm.com)
http://www-01.ibm.com/support/docview.wss?uid=swg21677445(psirt@us.ibm.com)
http://www.securityfocus.com/bid/68449(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84982(psirt@us.ibm.com)
http://secunia.com/advisories/59676(af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21677445(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/68449(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/84982(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3993(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.