CVE-2013-6722Unrestricted File Upload in IBM Websphere Portal

3 documents3 sources
Severity
5.8MEDIUMNVD
EPSS
0.5%
top 32.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Portal
Timeline
PublishedFeb 14
Latest updateMay 17

Description

Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet in IBM WebSphere Portal 7.x before 7.0.0.2 CF27 and 8.x through 8.0.0.1 CF09 allows remote attackers to cause a denial of service or modify data via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages1 packages

NVDibm/websphere_portal6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-jfm8-9p7p-vm9m: Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet in IBM WebSphere Portal 72022-05-17
CVEList
CVE-2013-6722: Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet in IBM WebSphere Portal 72014-02-14
CVE-2013-6722 — Unrestricted File Upload in IBM | cvebase