CVE-2013-3997

Open redirect vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 1.1 and 2.x before 2.1 FP2 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.9 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 37%
VendorProductVersion
ibminfosphere_biginsights
1.1.0.0
ibminfosphere_biginsights
1.1.0.1
ibminfosphere_biginsights
1.1.0.2
ibminfosphere_biginsights
1.2.0.0
ibminfosphere_biginsights
1.3.0.0
ibminfosphere_biginsights
1.3.0.1
ibminfosphere_biginsights
1.4.0.0
ibminfosphere_biginsights
2.0.0.0
ibminfosphere_biginsights
2.1.0.0
ibminfosphere_biginsights
2.1.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21667812
http://www.securityfocus.com/bid/66360
https://exchange.xforce.ibmcloud.com/vulnerabilities/84986
http://www-01.ibm.com/support/docview.wss?uid=swg21667812
http://www.securityfocus.com/bid/66360
https://exchange.xforce.ibmcloud.com/vulnerabilities/84986