CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2049

Red Hat CloudForms 2 Management Engine (CFME) allows remote attackers to conduct session tampering attacks by leveraging use of a static secret_token.rb secret.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://bugzilla.redhat.com/show_bug.cgi?id=959041
https://bugzilla.redhat.com/show_bug.cgi?id=959041

Products affected by CVE-2013-2049

Redhat » Cloudforms Management Engine » Version: 2.0

cpe:2.3:a:redhat:cloudforms_management_engine:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2049

Products

Pricing

Contact Us