Lucene search

[email protected]CVE-2013-3921

HistoryDec 05, 2013 - 6:55 p.m.

CVE-2013-3921

2013-12-0518:55:02

CWE-22

[email protected]

web.nvd.nist.gov

cve

2013

3921

directory traversal

easytime studio

easy file manager

ios

security

vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.5%

JSON

Directory traversal vulnerability in Easytime Studio Easy File Manager 1.1 for iOS allows remote attackers to read arbitrary files via a …%2f (encoded dot dot slash) to the default URI.

Affected configurations

NVD

Node

easytimestudioeasy_file_managerMatch1.1---iphone_os

CPENameOperatorVersion
easytimestudio:easy_file_managereasytimestudio easy file managereq1.1

CPE	Name	Operator	Version
easytimestudio:easy_file_manager	easytimestudio easy file manager	eq	1.1

References

exchange.xforce.ibmcloud.com/vulnerabilities/89169

www.trustwave.com/spiderlabs/advisories/TWSL2013-033.txt

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.5%

JSON

Related for CVE-2013-3921

prion1 nvd1 cvelist1