CVE-2013-6398

The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions via a request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:M/C:P/I:N/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 75%
VendorProductVersion
apachecloudstack
𝑥
≤ 4.2.0
apachecloudstack
2.0
apachecloudstack
2.0.1
apachecloudstack
2.1.0
apachecloudstack
2.1.1
apachecloudstack
2.1.2
apachecloudstack
2.1.3
apachecloudstack
2.1.4
apachecloudstack
2.1.5
apachecloudstack
2.1.6
apachecloudstack
2.1.7
apachecloudstack
2.1.8
apachecloudstack
2.1.9
apachecloudstack
2.1.10
apachecloudstack
2.2.0
apachecloudstack
2.2.1
apachecloudstack
2.2.2
apachecloudstack
2.2.3
apachecloudstack
2.2.5
apachecloudstack
2.2.6
apachecloudstack
2.2.7
apachecloudstack
2.2.8
apachecloudstack
2.2.9
apachecloudstack
2.2.11
apachecloudstack
2.2.12
apachecloudstack
2.2.13
apachecloudstack
2.2.14
apachecloudstack
3.0.0
apachecloudstack
3.0.1
apachecloudstack
3.0.2
apachecloudstack
4.0.0:incubating
apachecloudstack
4.0.1
apachecloudstack
4.0.2
apachecloudstack
4.1.0
apachecloudstack
4.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/55960
http://secunia.com/advisories/60284
http://support.citrix.com/article/CTX140989
http://www.securityfocus.com/bid/69432
http://www.securitytracker.com/id/1030762
https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual
https://issues.apache.org/jira/browse/CLOUDSTACK-5263
http://secunia.com/advisories/55960
http://secunia.com/advisories/60284
http://support.citrix.com/article/CTX140989
http://www.securityfocus.com/bid/69432
http://www.securitytracker.com/id/1030762
https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual
https://issues.apache.org/jira/browse/CLOUDSTACK-5263