Lucene search
HistoryMay 20, 2014 - 2:55 p.m.
CVE-2013-7383
cve-2013-7383
x2gocleansessions
x2go server
remote authenticated users
gain privileges
unspecified vectors
backticks
nvd
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.9%
x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks.
Affected configurations
Node
x2gox2go_serverRange≤4.0.0.7
ORx2gox2go_serverMatch4.0.0.0
ORx2gox2go_serverMatch4.0.0.1
ORx2gox2go_serverMatch4.0.0.2
ORx2gox2go_serverMatch4.0.0.3
ORx2gox2go_serverMatch4.0.0.4
ORx2gox2go_serverMatch4.0.0.6
ORx2gox2go_serverMatch4.0.1.0
ORx2gox2go_serverMatch4.0.1.1
ORx2gox2go_serverMatch4.0.1.2
ORx2gox2go_serverMatch4.0.1.3
ORx2gox2go_serverMatch4.0.1.4
ORx2gox2go_serverMatch4.0.1.5
ORx2gox2go_serverMatch4.0.1.6
ORx2gox2go_serverMatch4.0.1.7
ORx2gox2go_serverMatch4.0.1.8
ORx2gox2go_serverMatch4.0.1.9
Related
openvas
openvas
Gentoo Security Advisory GLSA 201405-26
2015-09-29 00:00:00
debiancve
debiancve
CVE-2013-7383
2014-05-20 14:55:04
prion
prion
Design/Logic Flaw
2014-05-20 14:55:00
nessus
nessus
GLSA-201405-26 : X2Go Server: Privilege Escalation
2014-05-20 00:00:00
nvd
nvd
CVE-2013-7383
2014-05-20 14:55:04
cvelist
cvelist
CVE-2013-7383
2014-05-20 14:00:00
gentoo
gentoo
X2Go Server: Privilege Escalation
2014-05-19 00:00:00
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.9%
Related for CVE-2013-7383