CVE-2013-5006

EPSS 8.27%
Published 31.07.2013 13:20:19
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discover the cleartext administrative password by reading the "var pass=" line within the HTML source code.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Westerndigital ≫ My Net N900 Version-

Westerndigital ≫ My Net N900c Version-

Westerndigital ≫ My Net N750 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	8.27%	0.914

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

http://archives.neohapsis.com/archives/bugtraq/2013-07/0133.html

http://archives.neohapsis.com/archives/bugtraq/2013-07/0146.html

http://www.osvdb.org/95519

https://exchange.xforce.ibmcloud.com/vulnerabilities/85903

https://nvd.nist.gov/vuln/detail/CVE-2013-5006

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-5006

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-5006

EUVD