CVE-2013-7465

Опубликовано: 05 окт. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Ice Cold Apps Servers Ultimate 6.0.2(12) does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts.

Ссылки

http://www.vapid.dhs.org/advisories/ultimate-server-android-vulns.html
Exploit
Third Party Advisory
http://www.vapidlabs.com/advisory.php?v=108
Exploit
Third Party Advisory
http://www.vapid.dhs.org/advisories/ultimate-server-android-vulns.html
Exploit
Third Party Advisory
http://www.vapidlabs.com/advisory.php?v=108
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:icecoldapps:servers_ultimate:6.0.2:*:*:*:*:android:*:*

EPSS

Процентиль: 93%

0.09239

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-5cm5-j6jq-ffjq