Information Disclosure Vulnerability in IBM SPSS Collaboration and Deployment Services
CVE-2013-4070

Currently unrated

Key Information:

Vendor: IBM
Status: Spss Collaboration And Deployment Services
Vendor: CVE Published:; 21 December 2013

What is CVE-2013-4070?

The Portal application in IBM SPSS Collaboration and Deployment Services versions prior to 4.2.1.3 IF3 and 5.0 FP3 is susceptible to a vulnerability that allows remote attackers to obtain internal passwords. This flaw could be exploited through unspecified vectors, potentially giving attackers unauthorized access to sensitive information and impacting the confidentiality of users' data.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21660191

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg1PM95817

vendor-advisoryx_refsource_AIXAPAR

https://exchange.xforce.ibmcloud.com/vulnerabilities/86656

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 21, 2013
Vulnerability Reserved
Jun 7, 2013