CVE-2013-4043Sensitive Information Exposure in IBM Spss Collaboration AND Deployment Services

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 51.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Spss Collaboration AND Deployment Services
Timeline
PublishedFeb 1
Latest updateMay 17

Description

The server in IBM SPSS Collaboration and Deployment Services 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1 allows remote attackers to read arbitrary files via an unspecified HTTP request.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-7p2q-j7qw-jq24: The server in IBM SPSS Collaboration and Deployment Services 42022-05-17
CVEList
CVE-2013-4043: The server in IBM SPSS Collaboration and Deployment Services 42014-02-01
CVE-2013-4043 — Sensitive Information Exposure in IBM | cvebase