Lucene search
HistoryMar 11, 2014 - 1:01 p.m.
CVE-2013-6207
cve-2013-6207
hp sitescope
soap
remote attack
arbitrary file read
denial of service
9.4 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:N/A:C
6.9 Medium
AI Score
Confidence
Low
0.216 Low
EPSS
Percentile
96.5%
Unspecified vulnerability in the loadFileContents function in the SOAP implementation in HP SiteScope 10.1x, 11.1x, and 11.21 allows remote attackers to read arbitrary files or cause a denial of service via unknown vectors, aka ZDI-CAN-2084.
Affected configurations
Node
hpsitescopeMatch10.10
ORhpsitescopeMatch10.11
ORhpsitescopeMatch10.12
ORhpsitescopeMatch10.13
ORhpsitescopeMatch11.10
ORhpsitescopeMatch11.11
ORhpsitescopeMatch11.12
ORhpsitescopeMatch11.21
Related
cvelist
cvelist
CVE-2013-6207
2014-03-11 01:00:00
zdi
zdi
prion
prion
Design/Logic Flaw
2014-03-11 13:01:00
nvd
nvd
CVE-2013-6207
2014-03-11 13:01:04
seebug
seebug
HP SiteScope 'loadFileContents' SOAPθ―·ζ±θΏη¨δ»£η ζ§θ‘ζΌζ΄
2014-03-07 00:00:00
securityvulns
securityvulns
nessus
nessus
HP SiteScope Multiple Unspecified Remote Code Execution Vulnerabilities
2013-08-02 00:00:00
9.4 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:N/A:C
6.9 Medium
AI Score
Confidence
Low
0.216 Low
EPSS
Percentile
96.5%
Related for CVE-2013-6207