CVE-2013-3571 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	2.6 UNKNOWN	NETWORK	HIGH		AV:N/AC:H/Au:N/C:N/I:N/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 74%

Affected Products (NVD)

Vendor	Product	Version
dest-unreach	socat	1.2.0.0
dest-unreach	socat	1.3.0.0
dest-unreach	socat	1.3.0.1
dest-unreach	socat	1.3.1.0
dest-unreach	socat	1.3.2.0
dest-unreach	socat	1.3.2.1
dest-unreach	socat	1.3.2.2
dest-unreach	socat	1.4.0.0
dest-unreach	socat	1.4.0.1
dest-unreach	socat	1.4.0.2
dest-unreach	socat	1.4.0.3
dest-unreach	socat	1.4.1.0
dest-unreach	socat	1.4.2.0
dest-unreach	socat	1.4.3.0
dest-unreach	socat	1.4.3.1
dest-unreach	socat	1.5.0.0
dest-unreach	socat	1.6.0.0
dest-unreach	socat	1.6.0.1
dest-unreach	socat	1.7.0.0
dest-unreach	socat	1.7.0.1
dest-unreach	socat	1.7.1.0
dest-unreach	socat	1.7.1.1
dest-unreach	socat	1.7.1.2
dest-unreach	socat	1.7.1.3
dest-unreach	socat	1.7.2.0
dest-unreach	socat	1.7.2.1
dest-unreach	socat	2.0.0:b1
dest-unreach	socat	2.0.0:b2
dest-unreach	socat	2.0.0:b3
dest-unreach	socat	2.0.0:b4
dest-unreach	socat	2.0.0:b5

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

socat

bookworm	1.7.4.4-2 fixed
bullseye	1.7.4.1-3 fixed
sid	1.8.0.1-2 fixed
squeeze	no-dsa
trixie	1.8.0.1-2 fixed
wheezy	no-dsa

Ubuntu Releases

Ubuntu Product

Codename

socat

lucid	ignored
precise	ignored
quantal	ignored
raring	ignored
saucy	ignored
trusty	not-affected
utopic	not-affected
vivid	not-affected
wily	not-affected
xenial	not-affected
yakkety	not-affected
zesty	not-affected

References

http://www.dest-unreach.org/socat/contrib/socat-secadv4.html

http://www.mandriva.com/security/advisories?name=MDVSA-2013:169

http://www.openwall.com/lists/oss-security/2013/05/26/1

http://www.dest-unreach.org/socat/contrib/socat-secadv4.html

http://www.mandriva.com/security/advisories?name=MDVSA-2013:169

http://www.openwall.com/lists/oss-security/2013/05/26/1