Vulnerability Description
IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-level account.
CVSS Score
6.8
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Flex System Manager | 1.3.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC96952
- http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87486
- http://www-01.ibm.com/support/docview.wss?uid=swg1IC96952
- http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87486
FAQ
What is CVE-2013-5424?
CVE-2013-5424 is a vulnerability with a CVSS score of 6.8 (MEDIUM). IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-leve...
How severe is CVE-2013-5424?
CVE-2013-5424 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5424?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Flex System Manager.