Exposures › CVE-2013-3993
CVE-2013-3993
Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-05-25
Reference
⌖ exploited in the wild
shame 80/100
ransomwareexploited-in-wild
Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.
Players implicated
Description
Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.
Affected FedRAMP products 5 in the catalog
| Product | Provider | Status | Match |
|---|---|---|---|
| IBM Cloud for Government | IBM | Authorized | vendor-exact · 0.90 |
| IBM Federal HR Cloud | IBM | Authorized | vendor-exact · 0.90 |
| IBM Maximo and TRIRIGA on Cloud for U.S. Federal | IBM | Authorized | vendor-exact · 0.90 |
| MaaS360 Enterprise Mobility Management | IBM | Authorized | vendor-exact · 0.90 |
| SmartCloud for Government | IBM | Authorized | vendor-exact · 0.90 |