Vulnerability in Ibm Sterling_connect
CVE-2013-4035
IBM Sterling Connect:Direct for OpenVMS 3.4.00, 3.4.01, 3.5.00, 3.6.0, and 3.6.0.1 allow remote attackers to have unspecified impact by leveraging failure to reject client requests for an unencrypted session when used as the server in a TC…
Vulnerability class: POODLE (CVE-2014-3566)
EPSS: 0.005 (37.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.3 (High). Vector: CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N.
Affected products
- Ibm Sterling_connect — versions 3.4.0.0, 3.4.0.1, 3.5.0.0
- N/a — versions n/a
Weakness classification (CWE)
References
- psirt@us.ibm.com (VDB Entry, vdb-entry, Vendor Advisory, x_refsource_XF)
- psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2013-4035?
- CVE-2013-4035 is a high-severity vulnerability in Ibm Sterling_connect, classified under Cryptographic Issues. CVSS score: 7.3/10. Published 2018-05-01.
- How severe is CVE-2013-4035?
- High severity. CVSS v3 base score is 7.3 out of 10.