CVE-2013-6398

EUVD-2013-6219
The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions via a request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:M/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Affected Products (NVD)
VendorProductVersion
apachecloudstack
𝑥
≤ 4.2.0
apachecloudstack
2.0
apachecloudstack
2.0.1
apachecloudstack
2.1.0
apachecloudstack
2.1.1
apachecloudstack
2.1.2
apachecloudstack
2.1.3
apachecloudstack
2.1.4
apachecloudstack
2.1.5
apachecloudstack
2.1.6
apachecloudstack
2.1.7
apachecloudstack
2.1.8
apachecloudstack
2.1.9
apachecloudstack
2.1.10
apachecloudstack
2.2.0
apachecloudstack
2.2.1
apachecloudstack
2.2.2
apachecloudstack
2.2.3
apachecloudstack
2.2.5
apachecloudstack
2.2.6
apachecloudstack
2.2.7
apachecloudstack
2.2.8
apachecloudstack
2.2.9
apachecloudstack
2.2.11
apachecloudstack
2.2.12
apachecloudstack
2.2.13
apachecloudstack
2.2.14
apachecloudstack
3.0.0
apachecloudstack
3.0.1
apachecloudstack
3.0.2
apachecloudstack
4.0.0:incubating
apachecloudstack
4.0.1
apachecloudstack
4.0.2
apachecloudstack
4.1.0
apachecloudstack
4.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/55960
http://secunia.com/advisories/60284
http://support.citrix.com/article/CTX140989
http://www.securityfocus.com/bid/69432
http://www.securitytracker.com/id/1030762
https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual
https://issues.apache.org/jira/browse/CLOUDSTACK-5263
http://secunia.com/advisories/55960
http://secunia.com/advisories/60284
http://support.citrix.com/article/CTX140989
http://www.securityfocus.com/bid/69432
http://www.securitytracker.com/id/1030762
https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual
https://issues.apache.org/jira/browse/CLOUDSTACK-5263