CVE-2013-4035
 
Severity Score
7.3
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
IBM Sterling Connect:Direct for OpenVMS 3.4.00, 3.4.01, 3.5.00, 3.6.0, and 3.6.0.1 allow remote attackers to have unspecified impact by leveraging failure to reject client requests for an unencrypted session when used as the server in a TCP/IP session and configured for SSL encryption with the client. IBM X-Force ID: 86138.
IBM Sterling Connect:Direct for OpenVMS 3.4.00, 3.4.01, 3.5.00, 3.6.0 y 3.6.0.1 permite que atacantes remotos provoquen un impacto sin especificar aprovechando el error a la hora de rechazar peticiones de clientes para una sesión sin cifrar cuando se emplean como servidor en una sesión TCP/IP y se configuran para el cifrado SSL con el cliente. IBM X-Force ID: 86138.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-06-07 CVE Reserved
- 2018-05-01 CVE Published
- 2024-08-06 CVE Updated
- 2024-09-15 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ibm Search vendor "Ibm" | Sterling Connect Search vendor "Ibm" for product "Sterling Connect" | 3.4.0.0 Search vendor "Ibm" for product "Sterling Connect" and version "3.4.0.0" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Sterling Connect Search vendor "Ibm" for product "Sterling Connect" | 3.4.0.1 Search vendor "Ibm" for product "Sterling Connect" and version "3.4.0.1" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Sterling Connect Search vendor "Ibm" for product "Sterling Connect" | 3.5.0.0 Search vendor "Ibm" for product "Sterling Connect" and version "3.5.0.0" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Sterling Connect Search vendor "Ibm" for product "Sterling Connect" | 3.6.0 Search vendor "Ibm" for product "Sterling Connect" and version "3.6.0" | - |
Affected
| ||||||
Ibm Search vendor "Ibm" | Sterling Connect Search vendor "Ibm" for product "Sterling Connect" | 3.6.0.1 Search vendor "Ibm" for product "Sterling Connect" and version "3.6.0.1" | - |
Affected
|