mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
244 lines
8.5 KiB
JSON
244 lines
8.5 KiB
JSON
{
|
|
"id": "CVE-2013-4484",
|
|
"sourceIdentifier": "secalert@redhat.com",
|
|
"published": "2013-11-01T02:55:04.713",
|
|
"lastModified": "2024-11-21T01:55:39.730",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Varnish before 3.0.5 allows remote attackers to cause a denial of service (child-process crash and temporary caching outage) via a GET request with trailing whitespace characters and no URI."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Vulnerablilidad en Varnish antes de 3.0.5 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del proceso hijo y corte de cach\u00e9 temporal) a trav\u00e9s de una solicitud GET con espacios en blanco finales y sin URI."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
|
|
"baseScore": 5.0,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "NONE",
|
|
"integrityImpact": "NONE",
|
|
"availabilityImpact": "PARTIAL"
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 2.9,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-119"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish-cache:varnish:2.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5165A847-E7D5-41F2-9A77-D7465702B96E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "3.0.4",
|
|
"matchCriteriaId": "1B706CA6-18AA-44ED-9E16-997F1F847080"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "E1278AE6-8B9F-44EF-948B-953206B7A575"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DE5217DE-F372-4088-8945-9C8261B7C08B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "622A6B9E-CD78-4468-8581-2416A8BE0082"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F6D1D3CB-BF9E-42D9-AF80-4E6AF7B750F4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "51384B7B-90E1-4306-BB8E-7CDCB5F5A73D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.0.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "75E49897-80FB-429A-8B3F-A1D1E6478EAA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "23BBDAF2-2C7A-4064-8353-F0A7B2889B94"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "84124000-3FF8-4580-ADF6-9EC0BB780811"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A4A9806F-8165-445F-A79D-C103E4F5F8F2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "16127BD0-F056-4C1F-A966-EC9BF0DCAD61"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2A431D90-57CE-45E4-8E80-845A50831303"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:2.1.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "FB3AEF03-4413-46AF-921C-82B425304170"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "DBD89F4F-78C7-4A3C-A3AC-C48D697262BF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.0:beta1:*:*:*:*:*:*",
|
|
"matchCriteriaId": "49CC7329-F9C3-4CE4-8B10-BE9BAC24615D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.0:beta2:*:*:*:*:*:*",
|
|
"matchCriteriaId": "99769363-66C9-4059-AC07-726BCF541312"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2E8FFA83-A7B0-480B-BA50-4EE2D17C8D86"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2585ABA8-DB5A-4AB0-9A4E-E9705D1F1A4F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:varnish_cache_project:varnish_cache:3.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0850185C-FA95-44F2-B4AF-454D053A811B"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0158.html",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00029.html",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00033.html",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/55452",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/55746",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.debian.org/security/2012/dsa-2814",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2013/10/30/5",
|
|
"source": "secalert@redhat.com"
|
|
},
|
|
{
|
|
"url": "https://www.varnish-cache.org/trac/ticket/1367",
|
|
"source": "secalert@redhat.com",
|
|
"tags": [
|
|
"Exploit",
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://archives.neohapsis.com/archives/bugtraq/2013-10/0158.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00029.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-updates/2013-11/msg00033.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/55452",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/55746",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.debian.org/security/2012/dsa-2814",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2013/10/30/5",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "https://www.varnish-cache.org/trac/ticket/1367",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108",
|
|
"tags": [
|
|
"Exploit",
|
|
"Patch"
|
|
]
|
|
}
|
|
]
|
|
} |