CVE-2013-5450

CWE-2553 documents3 sources
Severity
4.0MEDIUM
EPSS
0.2%
top 58.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Security Appscan
Timeline
PublishedNov 13
Latest updateMay 17

Description

IBM Security AppScan Enterprise 8.5 through 8.7.0.1, when Jazz authentication is enabled, allows man-in-the-middle attackers to obtain sensitive information or modify data by leveraging an improperly protected URL to obtain a session token.

CVSS vector

AV:N/AC:H/C:P/I:P/A:NExploitability: 4.9 | Impact: 4.9

Affected Packages1 packages

NVDibm/security_appscan7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-2jv5-h643-m9jp: IBM Security AppScan Enterprise 82022-05-17
CVEList
CVE-2013-5450: IBM Security AppScan Enterprise 82013-11-13
CVE-2013-5450 (MEDIUM CVSS 4) | IBM Security AppScan Enterprise 8.5 | cvebase.io