CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-5200

The (1) REST and (2) memcache interfaces in the Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 do not require authentication, which allows remote attackers to obtain sensitive information or modify data via an API call.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2013-09/0032.html
http://archives.neohapsis.com/archives/bugtraq/2013-09/0032.html

Products affected by CVE-2013-5200

Open-Xchange » Open-Xchange Appsuite » Version: 7.0.1

cpe:2.3:a:open-xchange:open-xchange_appsuite:7.0.1
Open-Xchange » Open-Xchange Appsuite » Version: 7.0.2

cpe:2.3:a:open-xchange:open-xchange_appsuite:7.0.2
Open-Xchange » Open-Xchange Appsuite » Version: 7.2.0

cpe:2.3:a:open-xchange:open-xchange_appsuite:7.2.0
Open-Xchange » Open-Xchange Appsuite » Version: 7.2.1

cpe:2.3:a:open-xchange:open-xchange_appsuite:7.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-5200

Products

Pricing

Contact Us