Vulnerability Description
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used. IBM X-Force ID: 84361.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Tivoli Application Dependency Discovery Manager | >= 7.2.0, <= 7.2.1.4 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21672388MitigationVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84361VDB EntryVendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21672388MitigationVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84361VDB EntryVendor Advisory
FAQ
What is CVE-2013-3023?
CVE-2013-3023 is a vulnerability with a CVSS score of 8.1 (HIGH). IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the networ...
How severe is CVE-2013-3023?
CVE-2013-3023 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-3023?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Application Dependency Discovery Manager.