1. Home
  2. CVE Database
  3. CVE-2013-2979
MEDIUM · 4.0

CVE-2013-2979

Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a cra...

Vulnerability Description

Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a crafted URL.

CVSS Score

4.0

MEDIUM

AV:N/AC:L/Au:S/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IbmInfosphere Optim Performance Manager5.1.0
IbmOptim Performance Manager4.1.1

Related Weaknesses (CWE)

CWE-22

References

FAQ

What is CVE-2013-2979?

CVE-2013-2979 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Directory traversal vulnerability in IBM Optim Performance Manager 4.1.1 and IBM InfoSphere Optim Performance Manager 5.x before 5.2 allows remote authenticated users to read arbitrary files via a cra...

How severe is CVE-2013-2979?

CVE-2013-2979 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-2979?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Infosphere Optim Performance Manager, Ibm Optim Performance Manager.