Vulnerability-Lookup

CVE-2013-4294 (GCVE-0-2013-4294)

Vulnerability from cvelistv5 – Published: 2013-09-23 20:00 – Updated: 2024-08-06 16:38

Summary

The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

GSD-2013-4294

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2013-4294

Aliases

CVE-2013-4294

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2013-4294",
    "description": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.",
    "id": "GSD-2013-4294",
    "references": [
      "https://www.suse.com/security/cve/CVE-2013-4294.html",
      "https://access.redhat.com/errata/RHSA-2013:1285"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2013-4294"
      ],
      "details": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.",
      "id": "GSD-2013-4294",
      "modified": "2023-12-13T01:22:15.876750Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2013-4294",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.ubuntu.com/usn/USN-2002-1",
            "refsource": "MISC",
            "url": "http://www.ubuntu.com/usn/USN-2002-1"
          },
          {
            "name": "http://osvdb.org/97237",
            "refsource": "MISC",
            "url": "http://osvdb.org/97237"
          },
          {
            "name": "http://rhn.redhat.com/errata/RHSA-2013-1285.html",
            "refsource": "MISC",
            "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
          },
          {
            "name": "http://seclists.org/oss-sec/2013/q3/586",
            "refsource": "MISC",
            "url": "http://seclists.org/oss-sec/2013/q3/586"
          },
          {
            "name": "http://secunia.com/advisories/54706",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/54706"
          },
          {
            "name": "https://bugs.launchpad.net/keystone/+bug/1202952",
            "refsource": "MISC",
            "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003e=2012.2.0,\u003c2013.1.4",
          "affected_versions": "All versions starting from 2012.2.0 before 2013.1.4",
          "cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-264",
            "CWE-937"
          ],
          "date": "2023-02-08",
          "description": "CVE-2013-4294 OpenStack: Keystone Token revocation failure using Keystone memcache/KVS backends",
          "fixed_versions": [
            "2013.1.4"
          ],
          "identifier": "CVE-2013-4294",
          "identifiers": [
            "GHSA-5qpp-v56f-mqfm",
            "CVE-2013-4294"
          ],
          "not_impacted": "All versions before 2012.2.0, all versions starting from 2013.1.4",
          "package_slug": "pypi/keystone",
          "pubdate": "2022-05-17",
          "solution": "Upgrade to version 2013.1.4 or above.",
          "title": "OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2013-4294",
            "https://bugs.launchpad.net/keystone/+bug/1202952",
            "http://osvdb.org/97237",
            "http://rhn.redhat.com/errata/RHSA-2013-1285.html",
            "http://seclists.org/oss-sec/2013/q3/586",
            "http://www.ubuntu.com/usn/USN-2002-1",
            "https://access.redhat.com/errata/RHSA-2013:1285",
            "https://access.redhat.com/security/cve/CVE-2013-4294",
            "https://bugzilla.redhat.com/show_bug.cgi?id=1004452",
            "https://github.com/advisories/GHSA-5qpp-v56f-mqfm"
          ],
          "uuid": "331e3080-fdd7-4c34-ad9f-c0df32373880"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2013.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2012.2.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2013.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2013.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2012.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2012.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2012.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2013.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openstack:keystone:2012.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2013-4294"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-264"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugs.launchpad.net/keystone/+bug/1202952",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
            },
            {
              "name": "97237",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/97237"
            },
            {
              "name": "[oss-security] 20130911  [OSSA 2013-025] Token revocation failure using Keystone memcache/KVS backends (CVE-2013-4294)",
              "refsource": "MLIST",
              "tags": [
                "Patch"
              ],
              "url": "http://seclists.org/oss-sec/2013/q3/586"
            },
            {
              "name": "RHSA-2013:1285",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
            },
            {
              "name": "54706",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/54706"
            },
            {
              "name": "USN-2002-1",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "http://www.ubuntu.com/usn/USN-2002-1"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2023-02-13T04:46Z",
      "publishedDate": "2013-09-23T20:55Z"
    }
  }
}

PYSEC-2013-42

Vulnerability from pysec - Published: 2013-09-23 20:55 - Updated: 2024-11-25 18:35

Details

Impacted products

Name	purl
keystone	pkg:pypi/keystone

Aliases

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "keystone",
        "purl": "pkg:pypi/keystone"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2012.2.0"
            },
            {
              "fixed": "2013.1.4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2013-4294",
    "GHSA-5qpp-v56f-mqfm"
  ],
  "details": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.",
  "id": "PYSEC-2013-42",
  "modified": "2024-11-25T18:35:18.357593Z",
  "published": "2013-09-23T20:55:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/97237"
    },
    {
      "type": "FIX",
      "url": "http://seclists.org/oss-sec/2013/q3/586"
    },
    {
      "type": "ADVISORY",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/54706"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.ubuntu.com/usn/USN-2002-1"
    }
  ]
}

FKIE_CVE-2013-4294

Vulnerability from fkie_nvd - Published: 2013-09-23 20:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://osvdb.org/97237
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2013-1285.html
secalert@redhat.com	http://seclists.org/oss-sec/2013/q3/586	Patch
secalert@redhat.com	http://secunia.com/advisories/54706
secalert@redhat.com	http://www.ubuntu.com/usn/USN-2002-1
secalert@redhat.com	https://bugs.launchpad.net/keystone/+bug/1202952	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/97237
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2013-1285.html
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/oss-sec/2013/q3/586	Patch
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/54706
af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/USN-2002-1
af854a3a-2127-422b-91ae-364da2661108	https://bugs.launchpad.net/keystone/+bug/1202952	Vendor Advisory

Impacted products

Vendor	Product	Version
openstack	keystone	2012.2
openstack	keystone	2012.2.1
openstack	keystone	2012.2.2
openstack	keystone	2012.2.3
openstack	keystone	2012.2.4
openstack	keystone	2013.1
openstack	keystone	2013.1.1
openstack	keystone	2013.1.2
openstack	keystone	2013.1.3

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2012.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "22E8C9F6-6DEE-4DD1-9B3E-5879E51464B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2012.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C26C7AF-F31B-48B4-8FA0-FBA24E86D641",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2012.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "792412B1-891F-404E-BC7F-1FA1DF4A623B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2012.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4481B437-5602-4EC9-BAD2-7EF065448E69",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2012.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A5845BE-3B3F-4015-872A-C4D2771736F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2013.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "70697FA3-5C64-4632-B0F5-7DF12B4B7067",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2013.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F72F13BC-BE73-4DCD-8C7F-7D803CB047FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2013.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "BFF04D50-069F-493B-8667-C55EA6413AD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openstack:keystone:2013.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0911BBF3-6111-4ED8-B269-EB4383C5DC05",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token."
    },
    {
      "lang": "es",
      "value": "El (1) mamcache y (2) KVS token backends en OpenStack Identity (Keystone) Folsom 2012.2.x y Grizzly anterior a la versi\u00f3n 2013.1.4 no compara correctamente la lista de revocaci\u00f3n del token PKI con tokens PKI, lo que permite a atacantes remotos evitar restricciones de acceso a trav\u00e9s de un token PKI revocado."
    }
  ],
  "id": "CVE-2013-4294",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2013-09-23T20:55:07.323",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://osvdb.org/97237"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://seclists.org/oss-sec/2013/q3/586"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/54706"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.ubuntu.com/usn/USN-2002-1"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/97237"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://seclists.org/oss-sec/2013/q3/586"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/54706"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/USN-2002-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-5QPP-V56F-MQFM

Vulnerability from github – Published: 2022-05-17 04:58 – Updated: 2024-11-26 18:39

Summary

OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token

Details

Severity ?

5.3 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

6.9 (Medium)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "keystone"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2012.2.0"
            },
            {
              "fixed": "2013.1.4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2013-4294"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": true,
    "github_reviewed_at": "2023-02-08T20:00:43Z",
    "nvd_published_at": "2013-09-23T20:55:00Z",
    "severity": "MODERATE"
  },
  "details": "The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.",
  "id": "GHSA-5qpp-v56f-mqfm",
  "modified": "2024-11-26T18:39:00Z",
  "published": "2022-05-17T04:58:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4294"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2013:1285"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2013-4294"
    },
    {
      "type": "WEB",
      "url": "https://bugs.launchpad.net/keystone/+bug/1202952"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1004452"
    },
    {
      "type": "WEB",
      "url": "https://github.com/pypa/advisory-database/tree/main/vulns/keystone/PYSEC-2013-42.yaml"
    },
    {
      "type": "PACKAGE",
      "url": "https://opendev.org/openstack/keystone"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2013-1285.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/oss-sec/2013/q3/586"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/USN-2002-1"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2013-4294 (GCVE-0-2013-4294)

GSD-2013-4294

PYSEC-2013-42

FKIE_CVE-2013-4294

GHSA-5QPP-V56F-MQFM

Tags

Sightings

Nomenclature