What is the severity of CVE-2013-6737?

CVE-2013-6737 is considered a medium severity vulnerability due to the potential exposure of sensitive customer data.

How do I fix CVE-2013-6737?

To fix CVE-2013-6737, upgrade the IBM System Storage Storwize V7000 Unified software to version 1.4.3.0 or higher.

Who is affected by CVE-2013-6737?

CVE-2013-6737 affects users of IBM System Storage Storwize V7000 Unified versions 1.3.x and 1.4.x prior to 1.4.3.0.

What kind of data is exposed by CVE-2013-6737?

CVE-2013-6737 allows remote authenticated users to access sensitive fragments of customer data from the exposed dump file.

What causes CVE-2013-6737 vulnerability?

The vulnerability in CVE-2013-6737 is caused by improper restrictions on the content of dump files when a 1691 hardware fault occurs.

Vulnerability/
CVE-2013-6737

medium

CWE

264

21/6/2014

6/8/2024

CVE-2013-6737

First published: Sat Jun 21 2014(Updated: )

IBM System Storage Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.0 does not properly restrict the content of a dump file upon encountering a 1691 hardware fault, which allows remote authenticated users to obtain sensitive customer-data fragments by reading this file after it is copied.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Storwize Unified V7000 Software	=1.3.0.0
IBM Storwize Unified V7000 Software	=1.3.1.0
IBM Storwize Unified V7000 Software	=1.4.0.0
IBM Storwize Unified V7000 Software	=1.4.0.1
IBM Storwize Unified V7000 Software	=1.4.0.2
IBM Storwize Unified V7000 Software	=1.4.0.3
IBM Storwize Unified V7000 Software	=1.4.0.4
IBM Storwize Unified V7000 Software	=1.4.0.5
IBM Storwize Unified V7000 Software	=1.4.1.0
IBM Storwize Unified V7000 Software	=1.4.1.1
IBM Storwize Unified V7000 Software	=1.4.2.0
IBM Storwize Unified V7000 Software	=1.4.2.1
IBM Storwize Unified V7000 Software

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6737?
CVE-2013-6737 is considered a medium severity vulnerability due to the potential exposure of sensitive customer data.
How do I fix CVE-2013-6737?
To fix CVE-2013-6737, upgrade the IBM System Storage Storwize V7000 Unified software to version 1.4.3.0 or higher.
Who is affected by CVE-2013-6737?
CVE-2013-6737 affects users of IBM System Storage Storwize V7000 Unified versions 1.3.x and 1.4.x prior to 1.4.3.0.
What kind of data is exposed by CVE-2013-6737?
CVE-2013-6737 allows remote authenticated users to access sensitive fragments of customer data from the exposed dump file.
What causes CVE-2013-6737 vulnerability?
The vulnerability in CVE-2013-6737 is caused by improper restrictions on the content of dump files when a 1691 hardware fault occurs.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/references
agent/weakness
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm storwize unified v7000 software
version/ibm storwize unified v7000 software/1.3.0.0
version/ibm storwize unified v7000 software/1.3.1.0
version/ibm storwize unified v7000 software/1.4.0.0
version/ibm storwize unified v7000 software/1.4.0.1
version/ibm storwize unified v7000 software/1.4.0.2
version/ibm storwize unified v7000 software/1.4.0.3
version/ibm storwize unified v7000 software/1.4.0.4
version/ibm storwize unified v7000 software/1.4.0.5
version/ibm storwize unified v7000 software/1.4.1.0
version/ibm storwize unified v7000 software/1.4.1.1
version/ibm storwize unified v7000 software/1.4.2.0
version/ibm storwize unified v7000 software/1.4.2.1

Frequently Asked Questions

What is the severity of CVE-2013-6737?
CVE-2013-6737 is considered a medium severity vulnerability due to the potential exposure of sensitive customer data.
How do I fix CVE-2013-6737?
To fix CVE-2013-6737, upgrade the IBM System Storage Storwize V7000 Unified software to version 1.4.3.0 or higher.
Who is affected by CVE-2013-6737?
CVE-2013-6737 affects users of IBM System Storage Storwize V7000 Unified versions 1.3.x and 1.4.x prior to 1.4.3.0.
What kind of data is exposed by CVE-2013-6737?
CVE-2013-6737 allows remote authenticated users to access sensitive fragments of customer data from the exposed dump file.
What causes CVE-2013-6737 vulnerability?
The vulnerability in CVE-2013-6737 is caused by improper restrictions on the content of dump files when a 1691 hardware fault occurs.

CVE-2013-6737

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-6737?

How do I fix CVE-2013-6737?

Who is affected by CVE-2013-6737?

What kind of data is exposed by CVE-2013-6737?

What causes CVE-2013-6737 vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-6737?

How do I fix CVE-2013-6737?

Who is affected by CVE-2013-6737?

What kind of data is exposed by CVE-2013-6737?

What causes CVE-2013-6737 vulnerability?