Vulnerability Details : CVE-2013-6398
The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions via a request.
Products affected by CVE-2013-6398
- cpe:2.3:a:apache:cloudstack:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:4.0.0:incubating:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.0:-:community:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.13:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:3.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:2.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:cloudstack:4.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-6398
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 60 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-6398
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.8
|
LOW | AV:N/AC:M/Au:M/C:P/I:N/A:N |
5.5
|
2.9
|
NIST |
CWE ids for CVE-2013-6398
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-6398
-
https://issues.apache.org/jira/browse/CLOUDSTACK-5263
[CLOUDSTACK-5263] Virtual router stop/start modifies firewall rules allowing additional access - ASF JIRA
-
https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual
[CVE-2013-6398] CloudStack Virtual Router stop/start modifies firewall rules allowing additional access : The Apache CloudStack BlogVendor Advisory
-
http://www.securityfocus.com/bid/69432
Citrix CloudPlatform CVE-2013-6398 Unauthorized Access Vulnerability
-
http://www.securitytracker.com/id/1030762
Citrix CloudPlatform Virtual Router Firewall Bug Lets Remote Users Access Network Resources - SecurityTracker
-
http://support.citrix.com/article/CTX140989
CVE-2013-6398 - Vulnerability in Citrix CloudPlatform Virtual Router could result in unauthorised access to network resources
Jump to