Vulnerability Details : CVE-2013-6312
Unspecified vulnerability in IBM Rational Service Tester 8.3.x and 8.5.x before 8.5.1 and Rational Performance Tester 8.3.x and 8.5.x before 8.5.1 allows remote attackers to read arbitrary files via unknown vectors.
Products affected by CVE-2013-6312
- cpe:2.3:a:ibm:rational_service_tester:8.3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_service_tester:8.3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.3.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:rational_performance_tester:8.5.0.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-6312
0.29%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 65 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-6312
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2013-6312
-
http://www-01.ibm.com/support/docview.wss?uid=swg21655815
IBM Security Bulletin: Rational Performance Tester file or path name vulnerabilityVendor Advisory
-
http://www-01.ibm.com/support/docview.wss?uid=swg21655814
IBM Security Bulletin: Rational Service Tester file or path name vulnerabilityVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/88593
IBM Rational Service Tester and Performance Tester file and path name information disclosure CVE-2013-6312 Vulnerability Report
Jump to