exploitDog

CVE-2013-6030

Опубликовано: 24 янв. 2014

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 (aka MPU2016) KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file.

Ссылки

http://www.kb.cert.org/vuls/id/168751
US Government Resource
http://www.securityfocus.com/bid/65105
http://www.kb.cert.org/vuls/id/168751
US Government Resource
http://www.securityfocus.com/bid/65105

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:h:emerson:network_power_avocent_mergepoint_unity_2016_firmware:1.9.16473:*:*:*:*:*:*:*

cpe:2.3:o:emerson:network_power_avocent_mergepoint_unity_2016_firmware:1.9.16473:*:*:*:*:*:*:*

EPSS

Процентиль: 40%

0.00181

Низкий

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-ccfq-m9xh-mhqj

github

больше 3 лет назад

Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 (aka MPU2016) KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file.

EPSS

Процентиль: 40%

0.00181

Низкий

5 Medium

CVSS2

Дефекты

CWE-22