Vulnerability Details : CVE-2013-4780
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary files via unspecified vectors.
Vulnerability category: Information leak
Products affected by CVE-2013-4780
- cpe:2.3:h:siemens:enterprise_openscape_branch:-:*:*:*:*:*:*:*
- cpe:2.3:a:siemens:openscape_session_border_controller:1r4.17.0:*:*:*:*:*:*:*
- cpe:2.3:a:siemens:openscape_session_border_controller:7r.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-4780
0.30%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 70 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-4780
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:C/I:N/A:N |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2013-4780
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-4780
-
http://www.securityfocus.com/bid/60555
Multiple Siemens OpenScape Products Multiple Security Vulnerabilities
-
https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130614-0_Siemens_OpenScape_Branch_SBC_Multiple_Vulnerabilities_v10.txt
Jump to