Weekly Update: a new vulnerability is published on the National Vulnerability Database (3 items)

New vulnerabilities from the NVD: CVE-2013-3024 IBM WebSphere Application Server (WAS) 8.5 through 8.5.0.2 on UNIX allows local users to gain privileges by leveraging improper process initialization. IBM X-Force ID: 84362. Published at: May 25, 2018 at 12:29AM View on website May 25, 2018 at 01:44AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2013-3023 IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the network for a session in which HTTP is used. IBM X-Force ID: 84361. Published at: May 25, 2018 at 12:29AM View on website May 25, 2018 at 01:44AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2013-3018 The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration information via a direct request, as demonstrated by happyaxis.jsp. IBM X-Force ID: 84354. Published at: May 25, 2018 at 12:29AM View on website May 25, 2018 at 01:44AM via National Vulnerability Database