CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-0501

The EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control, as used in Edraw Office Viewer Component, the client in IBM Cognos Disclosure Management (CDM) 10.2.0, and other products, allows remote attackers to read arbitrary files, or download an arbitrary program onto a client machine and execute this program, via a crafted web site.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.4%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.ibm.com/support/docview.wss?uid=swg21627070
https://exchange.xforce.ibmcloud.com/vulnerabilities/82345
http://www.ibm.com/support/docview.wss?uid=swg21627070
https://exchange.xforce.ibmcloud.com/vulnerabilities/82345

Products affected by CVE-2013-0501

Ibm » Cognos Disclosure Management » Version: 10.2.0

cpe:2.3:a:ibm:cognos_disclosure_management:10.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-0501

Products

Pricing

Contact Us