CVE-2013-2976Sensitive Information Exposure in IBM Websphere Application Server

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
1.9LOWNVD
EPSS
0.1%
top 82.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Application Server
Timeline
PublishedAug 21
Latest updateMay 17

Description

The Administrative console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.7, and 8.5 before 8.5.5.0 does not properly perform caching, which allows local users to obtain sensitive information via unspecified vectors.

CVSS vector

AV:L/AC:M/C:P/I:N/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-828x-pwwm-pchf: The Administrative console in IBM WebSphere Application Server (WAS) 62022-05-17
CVEList
CVE-2013-2976: The Administrative console in IBM WebSphere Application Server (WAS) 62013-08-21
CVE-2013-2976 — Sensitive Information Exposure in IBM | cvebase