Lucene search

K
cve[email protected]CVE-2013-1731
HistorySep 18, 2013 - 10:08 a.m.

CVE-2013-1731

2013-09-1810:08:24
CWE-20
web.nvd.nist.gov
24
nvd
cve-2013-1731
untrusted search path
gl tracing
mozilla firefox
android
arbitrary code
vulnerability

7.3 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.8%

Untrusted search path vulnerability in the GL tracing functionality in Mozilla Firefox before 24.0 on Android allows attackers to execute arbitrary code via a Trojan horse .so file in a world-writable directory.

Affected configurations

NVD
Node
mozillafirefoxRange23.0.1
OR
mozillafirefoxMatch19.0
OR
mozillafirefoxMatch19.0.1
OR
mozillafirefoxMatch19.0.2
OR
mozillafirefoxMatch20.0
OR
mozillafirefoxMatch20.0.1
OR
mozillafirefoxMatch21.0
OR
mozillafirefoxMatch22.0
OR
mozillafirefoxMatch23.0
AND
googleandroid

7.3 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.8%