CVE-2013-3993

6.5 MEDIUM CISA KEV - Actively Exploited

Published: July 07, 2014 Modified: October 22, 2025

Description

IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted data or code, via crafted parameters in unspecified API calls.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/59676

Source: psirt@us.ibm.com

Broken Link

http://www-01.ibm.com/support/docview.wss?uid=swg21677445

Source: psirt@us.ibm.com

Broken Link Vendor Advisory

http://www.securityfocus.com/bid/68449

Source: psirt@us.ibm.com

Broken Link Third Party Advisory VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/84982

Source: psirt@us.ibm.com

Third Party Advisory VDB Entry

http://secunia.com/advisories/59676

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www-01.ibm.com/support/docview.wss?uid=swg21677445

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link Vendor Advisory

http://www.securityfocus.com/bid/68449

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link Third Party Advisory VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/84982

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3993

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

9 reference(s) from NVD

Quick Stats

CVSS v3 Score

6.5 / 10.0

EPSS (Exploit Probability)

17.0%

95th percentile

Exploitation Status

Actively Exploited

Remediation due: 2022-06-15

Weaknesses (CWE)

CWE-22 CWE-22

Affected Vendors

ibm

Related CVEs