Access Control Vulnerability in IBM WebSphere Cast Iron
CVE-2013-2972

7.5HIGH

Key Information:

Vendor: IBM
Status: Websphere Cast Iron Cloud Integration
Vendor: CVE Published:; 11 July 2018

What is CVE-2013-2972?

IBM WebSphere Cast Iron 6.3 is susceptible to a vulnerability that allows remote attackers to evade access controls intended to protect sensitive data and functions. This issue arises due to unspecified vectors that can be exploited to gain unauthorized access. Organizations using this version should assess their security posture and implement necessary mitigations to safeguard their systems against potential exploitation.

References

https://www-01.ibm.com/support/docview.wss?uid=swg21635993

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83868

vdb-entryx_refsource_XF

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 11, 2018
Vulnerability Reserved
Apr 12, 2013