VYPR
Unrated severityNVD Advisory· Published Aug 21, 2013· Updated Jun 16, 2026

CVE-2013-3016

CVE-2013-3016

Description

IBM WebSphere Portal 6.1, 7.0, and 8.0 allows remote attackers to access the user directory via a crafted request for a servlet, related to the serveServletsByClassnameEnabled setting.

Affected products

11
  • cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:7.0.0.0:cf001:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf01:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf02:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf03:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf04:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:cf05:*:*:*:*:*:*
    • (no CPE)range: 6.1, 7.0, 8.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.