CVE-2013-6785

Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Common Weakness Enumeration
References
https://blog.rapid7.com/2013/11/06/supermicro-ipmi-firmware-vulnerabilities/
https://www.tenable.com/cve/CVE-2013-6785
https://blog.rapid7.com/2013/11/06/supermicro-ipmi-firmware-vulnerabilities/