Information Disclosure Flaw in IBM Tivoli Application Dependency Discovery Manager
CVE-2013-3018

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Tivoli Application Dependency Discovery Manager
Vendor: CVE Published:; 24 May 2018

Summary

The AXIS web application included in IBM Tivoli Application Dependency Discovery Manager (TADDM) versions 7.1.2 and 7.2.0 through 7.2.1.4 contains a vulnerability that allows remote attackers to access sensitive configuration information. This exposure can occur via direct requests, compromising the integrity of the application and potentially leading to further exploitation or unauthorized access to critical data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21672403

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/84354

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 24, 2018
Vulnerability Reserved
Apr 12, 2013