CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4025

IBM Data Studio Web Console 3.x before 3.2, Optim Performance Manager 5.x before 5.2, InfoSphere Optim Configuration Manager 2.x before 2.2, and DB2 Recovery Expert 2.x do not have an off autocomplete attribute for the login-password field, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.9%

CVSS Severity

CVSS v2 Score 1.9

References

Products affected by CVE-2013-4025

Ibm » Data Studio Web Console » Version: 3.1.0

cpe:2.3:a:ibm:data_studio_web_console:3.1.0
Ibm » Db2 Recovery Expert » Version: 2.0

cpe:2.3:a:ibm:db2_recovery_expert:2.0
Ibm » Infosphere Optim Configuration Manager » Version: 2.0

cpe:2.3:a:ibm:infosphere_optim_configuration_manager:2.0
Ibm » Infosphere Optim Configuration Manager » Version: 2.1

cpe:2.3:a:ibm:infosphere_optim_configuration_manager:2.1
Ibm » Optim Performance Manager » Version: 5.1.0

cpe:2.3:a:ibm:optim_performance_manager:5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4025

Products

Pricing

Contact Us