Brute Force Vulnerability in IBM InfoSphere Optim Data Growth for Oracle E-Business Suite
CVE-2013-2954

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Optim Data Growth For Oracle E-business Suite
Vendor: CVE Published:; 27 May 2013

What is CVE-2013-2954?

The login system of IBM InfoSphere Optim Data Growth for Oracle E-Business Suite versions 6.x, 7.x, and 9.x prior to 9.1.0.3 is vulnerable due to an insufficient limit on the number of failed login attempts. This inadequacy exposes the system to potential brute force attacks, enabling malicious users to gain unauthorized access by exploiting this weakness in authentication management.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21637444

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83663

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2013
Vulnerability Reserved
Apr 12, 2013