Lucene search
HistoryDec 09, 2013 - 4:36 p.m.
CVE-2013-4376
cve-2013-4376
x2go server
remote code execution
nvd
vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.7 High
AI Score
Confidence
Low
0.054 Low
EPSS
Percentile
93.2%
The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl.
Affected configurations
Node
x2gox2go_serverRange≤4.0.0.1
ORx2gox2go_serverMatch4.0.0.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| x2go:x2go_server | x2go x2go server | le | 4.0.0.1 |
| x2go:x2go_server | x2go x2go server | eq | 4.0.0.0 |
Related
mageia
mageia
Updated x2goserver package fixes security vulnerability
2014-03-02 02:55:00
securityvulns
securityvulns
[ MDVSA-2014:063 ] x2goserver
2014-03-18 00:00:00
x2goserver privilege escalation
2014-03-18 00:00:00
prion
prion
Path traversal
2013-12-09 16:36:00
gentoo
gentoo
X2Go Server: Arbitrary code execution
2013-10-28 00:00:00
debiancve
debiancve
CVE-2013-4376
2013-12-09 16:36:46
nvd
nvd
CVE-2013-4376
2013-12-09 16:36:46
nessus
nessus
Mandriva Linux Security Advisory : x2goserver (MDVSA-2014:063)
2014-03-18 00:00:00
GLSA-201310-19 : X2Go Server: Arbitrary code execution
2013-10-29 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201310-19
2015-09-29 00:00:00
Mageia: Security Advisory (MGASA-2014-0111)
2022-01-28 00:00:00
cvelist
cvelist
CVE-2013-4376
2013-12-09 11:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.7 High
AI Score
Confidence
Low
0.054 Low
EPSS
Percentile
93.2%
Related for CVE-2013-4376