Vulnerability Details CVE-2013-6810
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.664
EPSS Ranking 98.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/bugtraq/2013-12/0053.html
- http://marc.info/?l=bugtraq&m=138723620521347&w=2
- http://secunia.com/advisories/56143
- http://www.attrition.org/pipermail/vim/2014-January/002755.html
- http://www.securitytracker.com/id/1029485
- http://www.zerodayinitiative.com/advisories/ZDI-13-283/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90728
- https://www.exploit-db.com/exploits/42701/
- https://www.exploit-db.com/exploits/42702/
- http://archives.neohapsis.com/archives/bugtraq/2013-12/0053.html
- http://marc.info/?l=bugtraq&m=138723620521347&w=2
- http://secunia.com/advisories/56143
- http://www.attrition.org/pipermail/vim/2014-January/002755.html
- http://www.securitytracker.com/id/1029485
- http://www.zerodayinitiative.com/advisories/ZDI-13-283/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/90728
- https://www.exploit-db.com/exploits/42701/
- https://www.exploit-db.com/exploits/42702/
Products affected by CVE-2013-6810
-
cpe:2.3:a:emc:connectrix_manager:11.2.1
-
cpe:2.3:a:emc:connectrix_manager:12.0.1
-
cpe:2.3:a:emc:connectrix_manager:12.0.3