VYPR
Unrated severityNVD Advisory· Published Mar 5, 2014· Updated Jun 16, 2026

CVE-2013-5468

CVE-2013-5468

Description

IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, does not encrypt login requests, which allows remote attackers to obtain sensitive information by sniffing the network.

Affected products

7
  • IBM/Algo One7 versions
    cpe:2.3:a:ibm:algo_one:4.7.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:ibm:algo_one:4.7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:algo_one:4.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:algo_one:4.8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:algo_one:4.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:algo_one:4.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:algo_one:5.0.0:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.