VIR Vulnerability Intelligence Relay

CVE-2013-5397

low
Published 2013-12-18 · Modified 2026-04-29
CVSS v3
CVSS v2
3.3
VIR risk
3.3

Description

Unspecified vulnerability in the Webservice Axis Gateway in IBM Rational Focal Point 6.4 before devfix1, 6.4.1.3 before devfix1, 6.5.1 before devfix1, 6.5.2 before devfix4, 6.5.2.3 before devfix9, 6.6 before devfix5, 6.6.0.1 before devfix2, and 6.6.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-5398.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@us.ibm.com — http://www-01.ibm.com/support/docview.wss?uid=swg21654471

Application impact
VendorProductVersionsFixed
ibm ibmrational_focal_point6.4
ibm ibmrational_focal_point6.4.1.3
ibm ibmrational_focal_point6.5.1
ibm ibmrational_focal_point6.5.2
ibm ibmrational_focal_point6.5.2.3
ibm ibmrational_focal_point6.6
ibm ibmrational_focal_point6.6.0.1
ibm ibmrational_focal_point6.6.1

References

Verify integrity in audit chain (admin only). AS-IS.