CVE-2013-3997Improper Input Validation in IBM Infosphere Biginsights

CWE-20Improper Input Validation3 documents3 sources
Severity
4.9MEDIUMNVD
EPSS
0.2%
top 63.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Infosphere Biginsights
Timeline
PublishedMar 26
Latest updateMay 17

Description

Open redirect vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 1.1 and 2.x before 2.1 FP2 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 6.8 | Impact: 4.9

Affected Packages1 packages

NVDibm/infosphere_biginsights10 versions+9

🔴Vulnerability Details

2
GHSA
GHSA-jg29-v3j9-f966: Open redirect vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 12022-05-17
CVEList
CVE-2013-3997: Open redirect vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 12014-03-26
CVE-2013-3997 — Improper Input Validation in IBM | cvebase