Vulnerability Description
An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain "local environment" access via unknown vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Platform Symphony | 5.2 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=isg3T1020564Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87296
- http://www-01.ibm.com/support/docview.wss?uid=isg3T1020564Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87296
FAQ
What is CVE-2013-5400?
CVE-2013-5400 is a vulnerability with a CVSS score of 10.0 (HIGH). An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain "local e...
How severe is CVE-2013-5400?
CVE-2013-5400 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5400?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Platform Symphony.