CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-6785

Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.7%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

https://blog.rapid7.com/2013/11/06/supermicro-ipmi-firmware-vulnerabilities/
https://www.tenable.com/cve/CVE-2013-6785
https://blog.rapid7.com/2013/11/06/supermicro-ipmi-firmware-vulnerabilities/

Products affected by CVE-2013-6785

Supermicro » Intelligent Platform Management Interface » Version: Any

cpe:2.3:a:supermicro:intelligent_platform_management_interface:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6785

Products

Pricing

Contact Us