Vulnerability Description
IBM Security AppScan Enterprise 5.6 through 8.7.0.1 allows remote authenticated users to read arbitrary report files by leveraging knowledge of filenames that cannot be easily predicted.
CVSS Score
3.5
LOW
AV:N/AC:M/Au:S/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Security Appscan | 5.6.0.0 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21655578Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88193
- http://www-01.ibm.com/support/docview.wss?uid=swg21655578Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/88193
FAQ
What is CVE-2013-5453?
CVE-2013-5453 is a vulnerability with a CVSS score of 3.5 (LOW). IBM Security AppScan Enterprise 5.6 through 8.7.0.1 allows remote authenticated users to read arbitrary report files by leveraging knowledge of filenames that cannot be easily predicted.
How severe is CVE-2013-5453?
CVE-2013-5453 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5453?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Security Appscan.