CVE-2013-5454

IBM WebSphere Portal 6.0 through 6.0.1.7, 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF25, and 8.0 through 8.0.0.1 CF08 allows remote attackers to read arbitrary files via a modified URL.

Published: Nov 18, 2013
Updated: Nov 9, 2025
CVE: CVE-2013-5454
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
ibm / websphere_portal	7.0.0.1	7.0.0.1.x
ibm / websphere_portal	6.0.1.0	6.0.1.0.x
ibm / websphere_portal	8.0.0.1	8.0.0.1.x
ibm / websphere_portal	6.0.1.3	6.0.1.3.x
ibm / websphere_portal	7.0.0.0	7.0.0.0.x
ibm / websphere_portal	8.0.0.0	8.0.0.0.x
ibm / websphere_portal	6.1.5.1	6.1.5.1.x
ibm / websphere_portal	6.1.5.0	6.1.5.0.x
ibm / websphere_portal	6.0.1.1	6.0.1.1.x
ibm / websphere_portal	6.0.0.0	6.0.0.0.x
ibm / websphere_portal	6.1.0.5	6.1.0.5.x
ibm / websphere_portal	6.1.5.3	6.1.5.3.x
ibm / websphere_portal	6.0.1.4	6.0.1.4.x
ibm / websphere_portal	6.1.0.2	6.1.0.2.x
ibm / websphere_portal	6.1.5.2	6.1.5.2.x
ibm / websphere_portal	6.1.0.1	6.1.0.1.x
ibm / websphere_portal	6.1.0.4	6.1.0.4.x
ibm / websphere_portal	6.0.1.5	6.0.1.5.x
ibm / websphere_portal	6.0.1.2	6.0.1.2.x
ibm / websphere_portal	8.0	8.0.x
ibm / websphere_portal	6.1.0.3	6.1.0.3.x
ibm / websphere_portal	6.1.0.0	6.1.0.0.x
ibm / websphere_portal	6.1	6.1.x
ibm / websphere_portal	7.0.0.2	7.0.0.2.x
ibm / websphere_portal	6.0.1.6	6.0.1.6.x
ibm / websphere_portal	6.0.0.1	6.0.0.1.x

Vulnerability Database

316,422

CVE-2013-5454

Deep Security Visibility Without the Complexity