CVE-2013-3993

medium

Description

IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended file and directory restrictions, or access untrusted data or code, via crafted parameters in unspecified API calls.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/84982

https://www.bleepingcomputer.com/news/security/ibm-warns-of-critical-api-connect-auth-bypass-vulnerability/

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-3993

http://www-01.ibm.com/support/docview.wss?uid=swg21677445

Details

Source: Mitre, NVD

Published: 2014-07-07

Updated: 2026-06-16

Known Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 6.5

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.05236

Detections

Analytics