CVE-2013-3004
low
CVSS v3
—
CVSS v2
3.5
VIR risk
3.5
Description
Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@us.ibm.com — http://www-01.ibm.com/support/docview.wss?uid=swg21672395
Application impact
References
- http://www-01.ibm.com/support/docview.wss?uid=swg21672395
- http://www.securityfocus.com/bid/68452
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84145
- http://www-01.ibm.com/support/docview.wss?uid=swg21672395
- http://www.securityfocus.com/bid/68452
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84145
CWEs
CWE-22
Verify integrity in audit chain (admin only). AS-IS.