What is the severity of CVE-2013-3004?

CVE-2013-3004 is classified as a medium severity vulnerability.

Who is affected by CVE-2013-3004?

CVE-2013-3004 affects authenticated users of IBM Tivoli Application Dependency Discovery Manager versions 7.1.x and 7.2.x prior to 7.2.1.5.

What is a directory traversal vulnerability like CVE-2013-3004?

A directory traversal vulnerability allows an attacker to access restricted files or directories on a server.

Can I exploit CVE-2013-3004 if I am not authenticated?

CVE-2013-3004 can only be exploited by remote authenticated users.

Vulnerability/
CVE-2013-3004

low

3.5

CWE

1/7/2014

29/8/2017

CVE-2013-3004: Path Traversal

First published: Tue Jul 01 2014(Updated: )

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Tivoli Application Dependency Discovery Manager	=7.1.2
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.2
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.3
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.4
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.5
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.6
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.7
IBM Tivoli Application Dependency Discovery Manager	=7.1.2.8
IBM Tivoli Application Dependency Discovery Manager	=7.2.0
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.2
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.3
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.4
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.5
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.6
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.7
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.8
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.9
IBM Tivoli Application Dependency Discovery Manager	=7.2.0.10
IBM Tivoli Application Dependency Discovery Manager	=7.2.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.1
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.2
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.3
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.4
IBM Tivoli Application Dependency Discovery Manager	=7.2.1.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-3004?
CVE-2013-3004 is classified as a medium severity vulnerability.
How do I fix CVE-2013-3004?
To fix CVE-2013-3004, upgrade IBM Tivoli Application Dependency Discovery Manager to version 7.2.1.5 or later.
Who is affected by CVE-2013-3004?
CVE-2013-3004 affects authenticated users of IBM Tivoli Application Dependency Discovery Manager versions 7.1.x and 7.2.x prior to 7.2.1.5.
What is a directory traversal vulnerability like CVE-2013-3004?
A directory traversal vulnerability allows an attacker to access restricted files or directories on a server.
Can I exploit CVE-2013-3004 if I am not authenticated?
CVE-2013-3004 can only be exploited by remote authenticated users.

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/severity
agent/tags
agent/type
agent/weakness
collector/nvd-index
vendor/ibm
canonical/ibm tivoli application dependency discovery manager
version/ibm tivoli application dependency discovery manager/7.1.2
version/ibm tivoli application dependency discovery manager/7.1.2.2
version/ibm tivoli application dependency discovery manager/7.1.2.3
version/ibm tivoli application dependency discovery manager/7.1.2.4
version/ibm tivoli application dependency discovery manager/7.1.2.5
version/ibm tivoli application dependency discovery manager/7.1.2.6
version/ibm tivoli application dependency discovery manager/7.1.2.7
version/ibm tivoli application dependency discovery manager/7.1.2.8
version/ibm tivoli application dependency discovery manager/7.2.0
version/ibm tivoli application dependency discovery manager/7.2.0.1
version/ibm tivoli application dependency discovery manager/7.2.0.2
version/ibm tivoli application dependency discovery manager/7.2.0.3
version/ibm tivoli application dependency discovery manager/7.2.0.4
version/ibm tivoli application dependency discovery manager/7.2.0.5
version/ibm tivoli application dependency discovery manager/7.2.0.6
version/ibm tivoli application dependency discovery manager/7.2.0.7
version/ibm tivoli application dependency discovery manager/7.2.0.8
version/ibm tivoli application dependency discovery manager/7.2.0.9
version/ibm tivoli application dependency discovery manager/7.2.0.10
version/ibm tivoli application dependency discovery manager/7.2.1
version/ibm tivoli application dependency discovery manager/7.2.1.1
version/ibm tivoli application dependency discovery manager/7.2.1.2
version/ibm tivoli application dependency discovery manager/7.2.1.3
version/ibm tivoli application dependency discovery manager/7.2.1.4
version/ibm tivoli application dependency discovery manager/7.2.1.5

CVE-2013-3004: Path Traversal

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-3004?

How do I fix CVE-2013-3004?

Who is affected by CVE-2013-3004?

What is a directory traversal vulnerability like CVE-2013-3004?

Can I exploit CVE-2013-3004 if I am not authenticated?

Company

Resources

Contact