Vulnerability Details : CVE-2013-0483
The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, 2.1, and 2.2 uses cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
Products affected by CVE-2013-0483
- cpe:2.3:a:ibm:ims_enterprise_suite:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:ims_enterprise_suite:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:ims_enterprise_suite:2.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-0483
0.20%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 57 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-0483
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2013-0483
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-0483
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/81533
IBM IMS Enterprise Suite SOAP Gateway insecure authentication CVE-2013-0483 Vulnerability Report
-
http://www-01.ibm.com/support/docview.wss?uid=swg21631537
IBM notice: The page you requested cannot be displayedVendor Advisory
Jump to