CVE-2013-5468
Summary
| CVE | CVE-2013-5468 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-03-05 11:55:00 UTC |
| Updated | 2017-08-29 01:33:00 UTC |
| Description | IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, does not encrypt login requests, which allows remote attackers to obtain sensitive information by sniffing the network. |
Risk And Classification
Problem Types: CWE-310
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Algo One | 4.7.0 | All | All | All |
| Application | Ibm | Algo One | 4.7.1 | All | All | All |
| Application | Ibm | Algo One | 4.8.0 | All | All | All |
| Application | Ibm | Algo One | 4.9.0 | All | All | All |
| Application | Ibm | Algo One | 4.9.1 | All | All | All |
| Application | Ibm | Algo One | 5.0.0 | All | All | All |
| Application | Ibm | Algo One | 4.7.0 | All | All | All |
| Application | Ibm | Algo One | 4.7.1 | All | All | All |
| Application | Ibm | Algo One | 4.8.0 | All | All | All |
| Application | Ibm | Algo One | 4.9.0 | All | All | All |
| Application | Ibm | Algo One | 4.9.1 | All | All | All |
| Application | Ibm | Algo One | 5.0.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| IBM notice: The page you requested cannot be displayed | CONFIRM | www-01.ibm.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.