User Enumeration Vulnerability in IBM Flex System Manager
CVE-2013-5423

Currently unrated

Key Information:

Vendor: IBM
Status: Flex System Manager
Vendor: CVE Published:; 7 July 2014

Summary

IBM Flex System Manager (FSM) versions 1.1 through 1.3 prior to 1.3.2.0 are susceptible to a vulnerability that allows remote attackers to enumerate user accounts. This flaw exists due to unspecified vectors and can potentially facilitate unauthorized access and attacks on the system. Users of these affected versions should apply the necessary patches and updates to mitigate the risk.

References

http://www.securityfocus.com/bid/68370

vdb-entryx_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg1IT00278

vendor-advisoryx_refsource_AIXAPAR

http://secunia.com/advisories/58948

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jul 7, 2014
Vulnerability Reserved
Aug 22, 2013