CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4024

IBM Data Studio Web Console 3.x before 3.2, Optim Performance Manager 5.x before 5.2, InfoSphere Optim Configuration Manager 2.x before 2.2, and DB2 Recovery Expert 2.x support HTTP access to the Web Console, which allows remote attackers to read session cookies by sniffing the network.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.3%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2013-4024

Ibm » Data Studio Web Console » Version: 3.1.0

cpe:2.3:a:ibm:data_studio_web_console:3.1.0
Ibm » Db2 Recovery Expert » Version: 2.0

cpe:2.3:a:ibm:db2_recovery_expert:2.0
Ibm » Infosphere Optim Configuration Manager » Version: 2.0

cpe:2.3:a:ibm:infosphere_optim_configuration_manager:2.0
Ibm » Infosphere Optim Configuration Manager » Version: 2.1

cpe:2.3:a:ibm:infosphere_optim_configuration_manager:2.1
Ibm » Optim Performance Manager » Version: 5.1.0

cpe:2.3:a:ibm:optim_performance_manager:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4024

Products

Pricing

Contact Us