CVE-2013-4039 - Vulnerability Details - OpenCVE

IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 allows remote authenticated users to obtain sensitive information, and consequently bypass intended access restrictions on jobs, via unspecified vectors.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Websphere Extended Deployment Compute Grid

Configuration 1 [-]

cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.5.0.0:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid::::::::
	cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.0.0.0:::::::*
	cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.0.0.1:::::::*

No data.

References

Link	Providers
http://osvdb.org/96607
http://secunia.com/advisories/54651
http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760
http://www-01.ibm.com/support/docview.wss?uid=swg21647485
http://www-01.ibm.com/support/docview.wss?uid=swg21669554
http://www.securityfocus.com/bid/61992
https://exchange.xforce.ibmcloud.com/vulnerabilities/86175

History

No history.

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2013-08-28T10:00:00

Updated: 2024-08-06T16:30:49.791Z

Reserved: 2013-06-07T00:00:00

Link: CVE-2013-4039

Vulnrichment

No data.

NVD

Status : Modified

Published: 2013-08-28T13:13:58.573

Modified: 2024-11-21T01:54:46.060

Link: CVE-2013-4039

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-08-22T00:00:00", "descriptions": [{"lang": "en", "value": "IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 allows remote authenticated users to obtain sensitive information, and consequently bypass intended access restrictions on jobs, via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"name": "PM84760", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485"}, {"name": "61992", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/61992"}, {"name": "54651", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/54651"}, {"name": "websphere-edcg-cve20134039-infodisc(86175)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86175"}, {"name": "96607", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/96607"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2013-4039", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 allows remote authenticated users to obtain sensitive information, and consequently bypass intended access restrictions on jobs, via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "PM84760", "refsource": "AIXAPAR", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485"}, {"name": "61992", "refsource": "BID", "url": "http://www.securityfocus.com/bid/61992"}, {"name": "54651", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/54651"}, {"name": "websphere-edcg-cve20134039-infodisc(86175)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86175"}, {"name": "96607", "refsource": "OSVDB", "url": "http://osvdb.org/96607"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T16:30:49.791Z"}, "title": "CVE Program Container", "references": [{"name": "PM84760", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485"}, {"name": "61992", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/61992"}, {"name": "54651", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/54651"}, {"name": "websphere-edcg-cve20134039-infodisc(86175)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86175"}, {"name": "96607", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/96607"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2013-4039", "datePublished": "2013-08-28T10:00:00", "dateReserved": "2013-06-07T00:00:00", "dateUpdated": "2024-08-06T16:30:49.791Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.5.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "C5ED0C30-4B55-4A28-A388-E73912EF4ED4", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:*:*:*:*:*:*:*:*", "matchCriteriaId": "C11B89AE-871B-4672-898F-CA0626D35783", "versionEndIncluding": "8.0.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "4DBE7888-5E4D-467C-A982-8A2E326E08EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:websphere_extended_deployment_compute_grid:8.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "9EBE976F-076B-4211-B49F-90B382E2B966", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "IBM WebSphere Extended Deployment Compute Grid 8.0 before 8.0.0.3 allows remote authenticated users to obtain sensitive information, and consequently bypass intended access restrictions on jobs, via unspecified vectors."}, {"lang": "es", "value": "IBM WebSphere Extended Deployment Compute Grid v8.0 anterior a v8.0.0.3 permite a los usuarios remotos autenticados obtener informaci\u00f3n sensible, y por lo tanto pasar por alto las restricciones de acceso a los trabajos, a trav\u00e9s de vectores no especificados."}], "id": "CVE-2013-4039", "lastModified": "2024-11-21T01:54:46.060", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-08-28T13:13:58.573", "references": [{"source": "psirt@us.ibm.com", "url": "http://osvdb.org/96607"}, {"source": "psirt@us.ibm.com", "url": "http://secunia.com/advisories/54651"}, {"source": "psirt@us.ibm.com", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760"}, {"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485"}, {"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554"}, {"source": "psirt@us.ibm.com", "url": "http://www.securityfocus.com/bid/61992"}, {"source": "psirt@us.ibm.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86175"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/96607"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/54651"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM84760"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21647485"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21669554"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/61992"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86175"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}