CVE-2013-2979

CWE-22Path Traversal4 documents4 sources
Severity
4.0MEDIUM
EPSS
0.2%
top 57.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Infosphere Optim Performance ManagerIBM Optim Performance Manager
Timeline
PublishedAug 22
Latest updateMay 17

Description

Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a crafted URL.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

NVDibm/infosphere_optim_performance_manager5.1.0, 5.1.1.0, 5.1.1.1+2

🔴Vulnerability Details

2
GHSA
GHSA-r9wr-qv2x-hhw9: Directory traversal vulnerability in IBM Optim Performance Manager 42022-05-17
CVEList
CVE-2013-2979: Directory traversal vulnerability in IBM Optim Performance Manager 42013-08-22

💥Exploits & PoCs

1
Exploit-DB
DotNetNuke DNNArticle Module 10.0 - SQL Injection2013-08-15
CVE-2013-2979 (MEDIUM CVSS 4) | Directory traversal vulnerability i | cvebase.io