CVE-2013-5455

Name of the Vulnerable Software and Affected Versions IBM SmartCloud Provisioning version 2.1 before FP3 IF0001

Description The issue allows remote authenticated users to modify virtual-system deployment. This can be achieved via deployer.virtualsystems CLI commands. For example, a deletion can be performed using the deployer.virtualsystems[#].delete command.

Recommendations For IBM SmartCloud Provisioning version 2.1 before FP3 IF0001, apply FP3 IF0001 to resolve the issue. As a temporary workaround, consider restricting access to the deployer.virtualsystems CLI commands to minimize the risk of exploitation.