CVE-2013-5424

IBM Flex System Manager (FSM) 1.3.0 allows remote attackers to bypass intended access restrictions, and create new user accounts or execute tasks, by leveraging an expired password for the system-level account.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
VendorProductVersion
ibmflex_system_manager
1.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IC96952
http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938
https://exchange.xforce.ibmcloud.com/vulnerabilities/87486
http://www-01.ibm.com/support/docview.wss?uid=swg1IC96952
http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093938
https://exchange.xforce.ibmcloud.com/vulnerabilities/87486