VYPR
Unrated severityNVD Advisory· Published Dec 22, 2013· Updated Jun 16, 2026

CVE-2013-4012

CVE-2013-4012

Description

IBM WebSphere Portal 8.0.0.x before 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.

Affected products

3
  • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:websphere_portal:8.0.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <8.0.0.1 CF09

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.