Web Application Vulnerability in IBM InfoSphere BigInsights
CVE-2013-3996

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Biginsights
Vendor: CVE Published:; 6 August 2013

What is CVE-2013-3996?

The security flaw in IBM InfoSphere BigInsights versions 1.1 through 2.1 arises from the product's inadequate handling of FRAME elements. This vulnerability enables remote authenticated users to potentially exploit the application, facilitating phishing attacks by leveraging specially crafted websites. As a result, it raises significant concerns over the integrity and trustworthiness of web interactions facilitated through this software.

References

http://www.securityfocus.com/bid/61604

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg21645804

x_refsource_CONFIRM

http://www.securitytracker.com/id/1028883

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2013
Vulnerability Reserved
Jun 7, 2013