CVE-2013-0474

IBM Security Appscan - Information Disclosure

Title source: rule
STIX 2.1

Description

The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x before 8.7 and IBM Rational Policy Tester 5.6 and 8.x before 8.5.0.4 allows remote attackers to discover test Platform Authentication credentials via a crafted web site.

References (3)

Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21631304
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/81338
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21626264

Scores

EPSS 0.0100
EPSS Percentile 58.6%

Details

CWE
CWE-200
Status published
Products (22)
ibm/rational_policy_tester 5.6.0.0
ibm/rational_policy_tester 8.0.0.0
ibm/rational_policy_tester 8.0.0.1
ibm/rational_policy_tester 8.0.0.2
ibm/rational_policy_tester 8.0.1.0
ibm/rational_policy_tester 8.0.1.1
ibm/rational_policy_tester 8.5.0.0
ibm/rational_policy_tester 8.5.0.1
ibm/rational_policy_tester 8.5.0.2
ibm/rational_policy_tester 8.5.0.3
... and 12 more
Published Mar 29, 2013
Tracked Since Feb 18, 2026