CVE-2013-5391

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Worklight
Vendor: CVE Published:; 27 April 2018

Summary

IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.0 Fix Pack 2 make it easier for attackers to defeat cryptographic protection mechanisms by leveraging improper initialization of the pseudo random number generator (PRNG) in Android and use of the Java Cryptography Architecture (JCA) by a Worklight program. IBM X-Force ID: 87128.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/87128

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21665731

x_refsource_CONFIRM

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 27, 2018
Vulnerability Reserved
Aug 22, 2013