admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2013/CVE-2013-40xx/CVE-2013-4069.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

136 lines
4.6 KiB
JSON
Raw Blame History

{
"id": "CVE-2013-4069",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2013-12-21T14:22:56.817",
"lastModified": "2024-11-21T01:54:49.467",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The Portal application in IBM SPSS Collaboration and Deployment Services 4.2.1 before 4.2.1.3 IF3 and 5.0 before FP3 allows remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue."
},
{
"lang": "es",
"value": "La aplicaci\u00f3n Portal en IBM SPSS Collaboration and Deployment Services 4.2.1 anteriores a 4.2.1.3 IF3 y 5.0 anteriores a FP3 permite a atacantes rmeotos leer archivos de forma arbitrariaa trav\u00e9s de una declaraci\u00f3n de entidad externa XML en conjunto con una referencia a entidad, relacionado con un problema de XML External Entity (XXE)"
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"baseScore": 5.0,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "92B33DCA-ADCC-4521-9B8D-4A407FB9608E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FAA2C39D-902A-442F-AA6B-62BC8C380436"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7D801CF8-F6A0-4E40-8011-AE8D5A2F5C0B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:4.2.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "EFB0A724-CAC6-45E1-85D6-592BE4660695"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "4FA0641C-E2DB-4FDA-BD5F-51C7195D5389"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F050F5EC-1334-45FC-911D-75FB5B9C7244"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:spss_collaboration_and_deployment_services:5.0.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7CD574C3-DA32-4CD6-95DB-39F0CE663D6E"
}
]
}
]
}
],
"references": [
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM95817",
"source": "psirt@us.ibm.com"
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21660191",
"source": "psirt@us.ibm.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86621",
"source": "psirt@us.ibm.com"
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM95817",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21660191",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86621",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink