CVE-2013-6728

Name of the Vulnerable Software and Affected Versions IBM WebSphere Dashboard Framework versions 6.1.5 through 7.0.1

Description The issue concerns the charting component in IBM WebSphere Dashboard Framework, which has incorrect security constraints for a temporary directory. This allows remote attackers to view or delete image files.

Recommendations For versions 6.1.5 through 7.0.1, consider restricting access to the temporary directory to prevent unauthorized viewing or deletion of image files. As a temporary workaround, restrict access to the charting component until a fix is available.