What is the severity of CVE-2013-6330?

CVE-2013-6330 is considered a medium severity vulnerability due to the potential exposure of sensitive information.

How do I fix CVE-2013-6330?

To fix CVE-2013-6330, update IBM WebSphere Application Server to version 7.0.0.31 or later.

What are the affected versions of CVE-2013-6330?

CVE-2013-6330 affects IBM WebSphere Application Server versions 7.0 through 7.0.0.30.

Who is impacted by CVE-2013-6330?

Remote authenticated users of IBM WebSphere Application Server may be impacted by CVE-2013-6330.

What type of information can be compromised by CVE-2013-6330?

CVE-2013-6330 may allow unauthorized access to sensitive data stored in static file cache.

Vulnerability/
CVE-2013-6330

low

3.5

CWE

200

16/1/2014

6/8/2024

CVE-2013-6330: Infoleak

First published: Thu Jan 16 2014(Updated: )

IBM WebSphere Application Server 7.x before 7.0.0.31, when simpleFileServlet static file caching is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM WebSphere Application Server Feature Pack for Web Services	=7.0
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.1
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.2
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.3
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.10
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.11
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.12
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.13
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.14
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.15
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.16
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.17
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.18
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.19
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.21
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.22
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.23
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.24
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.25
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.27
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.28
IBM WebSphere Application Server Feature Pack for Web Services	=7.0.0.29

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6330?
CVE-2013-6330 is considered a medium severity vulnerability due to the potential exposure of sensitive information.
How do I fix CVE-2013-6330?
To fix CVE-2013-6330, update IBM WebSphere Application Server to version 7.0.0.31 or later.
What are the affected versions of CVE-2013-6330?
CVE-2013-6330 affects IBM WebSphere Application Server versions 7.0 through 7.0.0.30.
Who is impacted by CVE-2013-6330?
Remote authenticated users of IBM WebSphere Application Server may be impacted by CVE-2013-6330.
What type of information can be compromised by CVE-2013-6330?
CVE-2013-6330 may allow unauthorized access to sensitive data stored in static file cache.

agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/weakness
agent/severity
agent/references
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm websphere application server feature pack for web services
version/ibm websphere application server feature pack for web services/7.0
version/ibm websphere application server feature pack for web services/7.0.0.1
version/ibm websphere application server feature pack for web services/7.0.0.2
version/ibm websphere application server feature pack for web services/7.0.0.3
version/ibm websphere application server feature pack for web services/7.0.0.10
version/ibm websphere application server feature pack for web services/7.0.0.11
version/ibm websphere application server feature pack for web services/7.0.0.12
version/ibm websphere application server feature pack for web services/7.0.0.13
version/ibm websphere application server feature pack for web services/7.0.0.14
version/ibm websphere application server feature pack for web services/7.0.0.15
version/ibm websphere application server feature pack for web services/7.0.0.16
version/ibm websphere application server feature pack for web services/7.0.0.17
version/ibm websphere application server feature pack for web services/7.0.0.18
version/ibm websphere application server feature pack for web services/7.0.0.19
version/ibm websphere application server feature pack for web services/7.0.0.21
version/ibm websphere application server feature pack for web services/7.0.0.22
version/ibm websphere application server feature pack for web services/7.0.0.23
version/ibm websphere application server feature pack for web services/7.0.0.24
version/ibm websphere application server feature pack for web services/7.0.0.25
version/ibm websphere application server feature pack for web services/7.0.0.27
version/ibm websphere application server feature pack for web services/7.0.0.28
version/ibm websphere application server feature pack for web services/7.0.0.29