CVE-2013-3993

IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted...

Basic Information

CVE State: PUBLISHED
Reserved Date: June 07, 2013
Published Date: July 07, 2014
Last Updated: February 07, 2025
Vendor: n/a
Product: n/a
Description: IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted data or code, via crafted parameters in unspecified API calls.

CVSS Scores

CVSS v3.1

6.5 - MEDIUM

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SSVC Information

Exploitation: active
Technical Impact: partial

Exploit Status

Exploited in the Wild: Yes (added 2022-05-25 00:00:00 UTC) Source
Used in Malware: Yes (added 2022-05-25 00:00:00 UTC) Source

References

http://secunia.com/advisories/59676 http://www.securityfocus.com/bid/68449 https://exchange.xforce.ibmcloud.com/vulnerabilities/84982 http://www-01.ibm.com/support/docview.wss?uid=swg21677445

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-05-25 00:00:00 UTC