CVE-2013-5400

Severity CVSS v4.0:
Pending analysis
Type:
CWE-255 Credentials Management
Publication date:
14/02/2014
Last modified:
11/04/2025

Description

An unspecified servlet in IBM Platform Symphony Developer Edition (DE) 5.2 and 6.1.x through 6.1.1 has hardcoded credentials, which allows remote attackers to bypass authentication and obtain "local environment" access via unknown vectors.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:platform_symphony:5.2:*:*:*:developer:*:*:*
cpe:2.3:a:ibm:platform_symphony:6.1.0:*:*:*:developer:*:*:*
cpe:2.3:a:ibm:platform_symphony:6.1.1:*:*:*:developer:*:*:*