CVE-2013-6722

Published: Feb 14, 2014Modified: Apr 29, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:P

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet in IBM WebSphere Portal 7.x before 7.0.0.2 CF27 and 8.x through 8.0.0.1 CF09 allows remote attackers to cause a denial of service or modify data via unspecified vectors.

Affected (45)

Products: Ibm: Websphere Portal

Ibm

1 product

Websphere Portal

Configuration A

31 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Portal	Version 7.0.0.0
Ibm Websphere Portal	Version 7.0.0.0 cf001
Ibm Websphere Portal	Version 7.0.0.1
Ibm Websphere Portal	Version 7.0.0.1 cf002
Ibm Websphere Portal	Version 7.0.0.1 cf003
Ibm Websphere Portal	Version 7.0.0.1 cf004
Ibm Websphere Portal	Version 7.0.0.1 cf005
Ibm Websphere Portal	Version 7.0.0.1 cf006
Ibm Websphere Portal	Version 7.0.0.1 cf007
Ibm Websphere Portal	Version 7.0.0.1 cf008
Ibm Websphere Portal	Version 7.0.0.1 cf009
Ibm Websphere Portal	Version 7.0.0.1 cf010
Ibm Websphere Portal	Version 7.0.0.1 cf019
Ibm Websphere Portal	Version 7.0.0.2
Ibm Websphere Portal	Version 7.0.0.2 cf011
Ibm Websphere Portal	Version 7.0.0.2 cf012
Ibm Websphere Portal	Version 7.0.0.2 cf013
Ibm Websphere Portal	Version 7.0.0.2 cf014
Ibm Websphere Portal	Version 7.0.0.2 cf015
Ibm Websphere Portal	Version 7.0.0.2 cf016
Ibm Websphere Portal	Version 7.0.0.2 cf017
Ibm Websphere Portal	Version 7.0.0.2 cf018
Ibm Websphere Portal	Version 7.0.0.2 cf019
Ibm Websphere Portal	Version 7.0.0.2 cf020
Ibm Websphere Portal	Version 7.0.0.2 cf021
Ibm Websphere Portal	Version 7.0.0.2 cf022
Ibm Websphere Portal	Version 7.0.0.2 cf23
Ibm Websphere Portal	Version 7.0.0.2 cf24
Ibm Websphere Portal	Version 7.0.0.2 cf25
Ibm Websphere Portal	Version 7.0.0.2 cf26
Ibm Websphere Portal	Version 7.0.0.2 cf27

Configuration B

14 vulnerable

Vulnerable Software	Affected Versions
Ibm Websphere Portal	Version 8.0.0.0
Ibm Websphere Portal	Version 8.0.0.0 cf01
Ibm Websphere Portal	Version 8.0.0.0 cf02
Ibm Websphere Portal	Version 8.0.0.0 cf03
Ibm Websphere Portal	Version 8.0.0.0 cf04
Ibm Websphere Portal	Version 8.0.0.0 cf05
Ibm Websphere Portal	Version 8.0.0.1
Ibm Websphere Portal	Version 8.0.0.1 cf04
Ibm Websphere Portal	Version 8.0.0.1 cf05
Ibm Websphere Portal	Version 8.0.0.1 cf06
Ibm Websphere Portal	Version 8.0.0.1 cf07
Ibm Websphere Portal	Version 8.0.0.1 cf08
Ibm Websphere Portal	Version 8.0.0.1 cf09
Ibm Websphere Portal	Version 8.0

References (6)

http://www-01.ibm.com/support/docview.wss?uid=swg1PI07013

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21662873

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/89235

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg1PI07013

Source: af854a3a-2127-422b-91ae-364da2661108

http://www-01.ibm.com/support/docview.wss?uid=swg21662873

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/89235

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.