PT-2013-4074 · Ibm · Ibm Infosphere Optim Performance Manager+1

Published

2013-08-22

Updated

2017-08-29

CVE-2013-2979

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Optim Performance Manager version 4.1.1 IBM InfoSphere Optim Performance Manager versions prior to 5.2

Description The issue allows remote authenticated users to read arbitrary files via a crafted URL, specifically due to a directory traversal vulnerability.

Recommendations For IBM Optim Performance Manager version 4.1.1, update to a version that is not affected by this issue. For IBM InfoSphere Optim Performance Manager versions prior to 5.2, update to version 5.2 or later.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2013-2979

Affected Products

Ibm Infosphere Optim Performance Manager

Optim Performance Manager

PT-2013-4074 · Ibm · Ibm Infosphere Optim Performance Manager+1

CVE-2013-2979

Weakness Enumeration

Related Identifiers

Affected Products

References · 3