Lucene search

MitreCVE-2013-4867

HistoryDec 27, 2019 - 5:15 p.m.

CVE-2013-4867

2019-12-2717:15:15

CWE-269

mitre

web.nvd.nist.gov

106

electronic arts

karotz smart rabbit

python

module hijacking

nvd

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

CVSS3

6.3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking

Affected configurations

Nvd

Node

eakarotz_smart_rabbit_firmwareMatch12.07.19.00

AND

eakarotz_smart_rabbitMatch-

VendorProductVersionCPE
eakarotz_smart_rabbit_firmware12.07.19.00cpe:2.3:o:ea:karotz_smart_rabbit_firmware:12.07.19.00:*:*:*:*:*:*:*
eakarotz_smart_rabbit-cpe:2.3:h:ea:karotz_smart_rabbit:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ea	karotz_smart_rabbit_firmware	12.07.19.00	cpe:2.3:o:ea:karotz_smart_rabbit_firmware:12.07.19.00:::::::*
ea	karotz_smart_rabbit	-	cpe:2.3:h:ea:karotz_smart_rabbit:-:::::::*

References

www.exploit-db.com/exploits/27285

exchange.xforce.ibmcloud.com/vulnerabilities/86222

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

CVSS3

6.3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Related for CVE-2013-4867