Lucene search
HistoryOct 01, 2013 - 12:55 a.m.
CVE-2013-5725
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
69.7%
The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in a byword://replace URL.
Affected configurations
Node
metaclassybywordMatch2.0.0
ORmetaclassybywordMatch2.0.1
ORmetaclassybywordMatch2.0.2
ORmetaclassybywordMatch2.0.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| metaclassy | byword | 2.0.0 | cpe:2.3:a:metaclassy:byword:2.0.0:*:*:*:*:*:*:* |
| metaclassy | byword | 2.0.1 | cpe:2.3:a:metaclassy:byword:2.0.1:*:*:*:*:*:*:* |
| metaclassy | byword | 2.0.2 | cpe:2.3:a:metaclassy:byword:2.0.2:*:*:*:*:*:*:* |
| metaclassy | byword | 2.0.3 | cpe:2.3:a:metaclassy:byword:2.0.3:*:*:*:*:*:*:* |
Related
prion
prion
Session fixation
2013-10-01 00:55:00
zdt
zdt
Byword 2.x File Overwrite Vulnerability
2013-10-02 00:00:00
securityvulns
securityvulns
[CVE-2013-5725] - Byword for iOS Data Destruction Vulnerability
2013-10-01 00:00:00
iOS applications multiple seucrity vulnereabilities
2013-12-30 00:00:00
cve
cve
CVE-2013-5725
2013-10-01 00:55:12
packetstorm
packetstorm
Byword 2.x File Overwrite
2013-09-29 00:00:00
cvelist
cvelist
CVE-2013-5725
2013-10-01 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.003
Percentile
69.7%
Related for NVD:CVE-2013-5725