CVE-2013-0522
Summary
| CVE | CVE-2013-0522 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-07-16 14:29:00 UTC |
| Updated | 2018-09-17 17:56:00 UTC |
| Description | The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmission between Windows and Notes. IBM X-Force ID: 82531. |
Risk And Classification
Problem Types: CWE-200
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Lotus Notes | 8.0 | All | All | All |
| Application | Ibm | Lotus Notes | 8.0.1 | All | All | All |
| Application | Ibm | Lotus Notes | 8.0.2 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.1 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.2 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.3 | All | All | All |
| Application | Ibm | Lotus Notes | 9.0 | All | All | All |
| Application | Ibm | Lotus Notes | 8.0 | All | All | All |
| Application | Ibm | Lotus Notes | 8.0.1 | All | All | All |
| Application | Ibm | Lotus Notes | 8.0.2 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.1 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.2 | All | All | All |
| Application | Ibm | Lotus Notes | 8.5.3 | All | All | All |
| Application | Ibm | Lotus Notes | 9.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM Security Bulletin: For safer IBM Notes single sign on with Windows, use Notes Shared Login or Notes Federated Login (CVE-2013-0522) - United States | CONFIRM | www-01.ibm.com | Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | VDB Entry, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.