CVE-2013-7383 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 75%

Affected Products (NVD)

Vendor	Product	Version
x2go	x2go_server	𝑥 ≤ 4.0.0.7
x2go	x2go_server	4.0.0.0
x2go	x2go_server	4.0.0.1
x2go	x2go_server	4.0.0.2
x2go	x2go_server	4.0.0.3
x2go	x2go_server	4.0.0.4
x2go	x2go_server	4.0.0.6
x2go	x2go_server	4.0.1.0
x2go	x2go_server	4.0.1.1
x2go	x2go_server	4.0.1.2
x2go	x2go_server	4.0.1.3
x2go	x2go_server	4.0.1.4
x2go	x2go_server	4.0.1.5
x2go	x2go_server	4.0.1.6
x2go	x2go_server	4.0.1.7
x2go	x2go_server	4.0.1.8
x2go	x2go_server	4.0.1.9

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

x2goserver

bookworm	4.1.0.3-7+deb12u1 fixed
bullseye	4.1.0.3-5 fixed
sid	4.1.0.6-1.1 fixed
trixie	4.1.0.6-1.1 fixed

Common Weakness Enumeration

CWE-264 -

References

http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83

http://security.gentoo.org/glsa/glsa-201405-26.xml

http://www.openwall.com/lists/oss-security/2014/05/18/1

http://www.openwall.com/lists/oss-security/2014/05/19/4

http://www.securityfocus.com/bid/65001

http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83

http://security.gentoo.org/glsa/glsa-201405-26.xml

http://www.openwall.com/lists/oss-security/2014/05/18/1

http://www.openwall.com/lists/oss-security/2014/05/19/4

http://www.securityfocus.com/bid/65001