Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-6448
HistoryJan 23, 2014 - 12:55 a.m.

CVE-2013-6448

2014-01-2300:55:03
CWE-264
[email protected]
web.nvd.nist.gov
34
cve-2013-6448
jboss seam
jboss web framework kit
remote attackers
security vulnerability
information disclosure

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON

The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restriction and obtain information about arbitrary classes and methods on the server classpath via unspecified vectors.

Affected configurations

NVD
Node
redhatjboss_seam_2_frameworkRange2.3.1
OR
redhatjboss_seam_2_frameworkMatch2.0.0beta1
OR
redhatjboss_seam_2_frameworkMatch2.0.0cr1
OR
redhatjboss_seam_2_frameworkMatch2.0.0cr2
OR
redhatjboss_seam_2_frameworkMatch2.0.0cr3
OR
redhatjboss_seam_2_frameworkMatch2.0.0ga
OR
redhatjboss_seam_2_frameworkMatch2.0.1cr1
OR
redhatjboss_seam_2_frameworkMatch2.0.1cr2
OR
redhatjboss_seam_2_frameworkMatch2.0.1ga
OR
redhatjboss_seam_2_frameworkMatch2.0.2cr1
OR
redhatjboss_seam_2_frameworkMatch2.0.2cr2
OR
redhatjboss_seam_2_frameworkMatch2.0.2ga
OR
redhatjboss_seam_2_frameworkMatch2.0.2sp1
OR
redhatjboss_seam_2_frameworkMatch2.0.3cr1
OR
redhatjboss_seam_2_frameworkMatch2.1.0alpha1
OR
redhatjboss_seam_2_frameworkMatch2.1.0beta1
OR
redhatjboss_seam_2_frameworkMatch2.1.0cr1
OR
redhatjboss_seam_2_frameworkMatch2.1.0ga
OR
redhatjboss_seam_2_frameworkMatch2.1.0sp1
OR
redhatjboss_seam_2_frameworkMatch2.1.1cr1
OR
redhatjboss_seam_2_frameworkMatch2.1.1cr2
OR
redhatjboss_seam_2_frameworkMatch2.1.1ga
OR
redhatjboss_seam_2_frameworkMatch2.1.2
OR
redhatjboss_seam_2_frameworkMatch2.1.2cr1
OR
redhatjboss_seam_2_frameworkMatch2.1.2cr2
OR
redhatjboss_seam_2_frameworkMatch2.2.0cr1
OR
redhatjboss_seam_2_frameworkMatch2.2.0ga
OR
redhatjboss_seam_2_frameworkMatch2.2.1
OR
redhatjboss_seam_2_frameworkMatch2.2.1cr1
OR
redhatjboss_seam_2_frameworkMatch2.2.1cr2
OR
redhatjboss_seam_2_frameworkMatch2.2.1cr3
OR
redhatjboss_seam_2_frameworkMatch2.2.2
OR
redhatjboss_seam_2_frameworkMatch2.3.0
OR
redhatjboss_seam_2_frameworkMatch2.3.0alpha
OR
redhatjboss_seam_2_frameworkMatch2.3.0beta1
OR
redhatjboss_seam_2_frameworkMatch2.3.0beta2
OR
redhatjboss_seam_2_frameworkMatch2.3.0cr1
OR
redhatjboss_seam_2_frameworkMatch2.3.1cr1

Related

checkpoint_advisories 1
prion 1
cvelist 1
nvd 1
checkpoint_advisories
checkpoint_advisories
Red Hat JBoss Seam InterfaceGenerator Information Disclosure (CVE-2013-6448)
2014-05-18 00:00:00
prion
prion
Input validation
2014-01-23 00:55:00
cvelist
cvelist
CVE-2013-6448
2014-01-23 00:00:00
nvd
nvd
CVE-2013-6448
2014-01-23 00:55:03

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON
Related for CVE-2013-6448
checkpoint_advisories1prion1cvelist1nvd1