FKIE_CVE-2013-6398

Vulnerability from fkie_nvd - Published: 2014-01-15 16:08 - Updated: 2025-04-11 00:51
Severity ?
Summary
The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions via a request.
References
secalert@redhat.comhttp://secunia.com/advisories/55960Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/60284
secalert@redhat.comhttp://support.citrix.com/article/CTX140989
secalert@redhat.comhttp://www.securityfocus.com/bid/69432
secalert@redhat.comhttp://www.securitytracker.com/id/1030762
secalert@redhat.comhttps://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtualVendor Advisory
secalert@redhat.comhttps://issues.apache.org/jira/browse/CLOUDSTACK-5263
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/55960Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/60284
af854a3a-2127-422b-91ae-364da2661108http://support.citrix.com/article/CTX140989
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/69432
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1030762
af854a3a-2127-422b-91ae-364da2661108https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtualVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://issues.apache.org/jira/browse/CLOUDSTACK-5263
Impacted products
Vendor Product Version
apache cloudstack *
apache cloudstack 2.0
apache cloudstack 2.0.1
apache cloudstack 2.1.0
apache cloudstack 2.1.1
apache cloudstack 2.1.2
apache cloudstack 2.1.3
apache cloudstack 2.1.4
apache cloudstack 2.1.5
apache cloudstack 2.1.6
apache cloudstack 2.1.7
apache cloudstack 2.1.8
apache cloudstack 2.1.9
apache cloudstack 2.1.10
apache cloudstack 2.2.0
apache cloudstack 2.2.1
apache cloudstack 2.2.2
apache cloudstack 2.2.3
apache cloudstack 2.2.5
apache cloudstack 2.2.6
apache cloudstack 2.2.7
apache cloudstack 2.2.8
apache cloudstack 2.2.9
apache cloudstack 2.2.11
apache cloudstack 2.2.12
apache cloudstack 2.2.13
apache cloudstack 2.2.14
apache cloudstack 3.0.0
apache cloudstack 3.0.1
apache cloudstack 3.0.2
apache cloudstack 4.0.0
apache cloudstack 4.0.1
apache cloudstack 4.0.2
apache cloudstack 4.1.0
apache cloudstack 4.1.1
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0A27E27-29CE-482E-937B-6591394A0D52",
              "versionEndIncluding": "4.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.0:-:community:*:*:*:*:*",
              "matchCriteriaId": "07DDD585-19E2-473A-B1A8-25BB3129D0C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D0AA4AC-3101-4012-AA43-7583CB077C59",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E4E5F52-CBCF-47AC-A94A-980EF65841CC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "14E0EF07-41E0-40E7-A0B4-210294118B5E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4CF7900-A67B-4779-9F04-9C35B1460D89",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "355A13B2-73AB-4AA2-9EE7-AD588D5EE68F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC0583FF-C928-440E-894C-CB3EC2327444",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "170F57A6-1FCE-439D-AED9-D60BCD9006EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD2B711E-E37E-4D76-96E2-B2575B9B165E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "2AC25A79-5B91-4BAC-A419-B1C7F20133FC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "00E46243-C2DF-4448-B559-7AB4B8043CD9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "08F17588-845E-4C52-AB03-E939C7CCEDE0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7F77294-6AD9-4BEF-9B84-84067A8F4925",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C067A21-0F97-4FB1-9D5B-65DADD589E56",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B321CA2-39D8-4DC6-843F-38BE3DBAE795",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0601E746-2144-4AEC-A2A3-F35A67EC7AD1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F738C7C1-84B7-4E16-8F1A-4ACF3FE90A12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "7BA7376F-6160-4DDB-B0C3-D68719519256",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3FBF487-4528-4453-82D8-B10388FB6487",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "0EFDB749-57D9-4C81-A0BC-751F97183F61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "7882F0F9-EF9E-48BB-B609-2D3BAC089A92",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3D50D8C-1739-4A08-891B-752F5048E1B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E4F87FA-CE60-4BBE-AB61-4CDB76DE6C65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "E640A1C1-4B65-4978-B4CA-A1049B5C9443",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C539879-5EC9-4BA7-9FE1-B93933D77FA8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:2.2.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "836EF10E-6F1D-4E7A-B41C-34C5CD246C17",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C09B6538-02FB-4AC8-9F1B-AAAE7A9BE6C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:3.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "518BB162-8FAD-4B73-87B0-604EA84B3DB5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:3.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C68CF8F3-D31B-4CDB-91C9-0334012C7CE6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:4.0.0:incubating:*:*:*:*:*:*",
              "matchCriteriaId": "EA46B1B9-FCD7-4F3D-88E6-95B1A5A0497C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C96C7798-F716-44DA-A57F-3103E001236B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:4.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "737C672C-D820-41B9-88E3-97DC113D9290",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:4.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "033EBD77-72A2-42B7-952D-95A85D8CF262",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:cloudstack:4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B3A13FB-6A1E-4E9C-B624-97F029188C5E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The virtual router in Apache CloudStack before 4.2.1 does not preserve the source restrictions in firewall rules after being restarted, which allows remote attackers to bypass intended restrictions via a request."
    },
    {
      "lang": "es",
      "value": "El router virtual en Apache CloudStack anteriores a 4.2.1 no mantiene las restricciones de or\u00edgenes en reglas del firewall despu\u00e9s de ser reiniciado, lo cual permite a atacantes remotos eludir restricciones intencionadas a trav\u00e9s de una petici\u00f3n."
    }
  ],
  "id": "CVE-2013-6398",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "MULTIPLE",
          "availabilityImpact": "NONE",
          "baseScore": 2.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:M/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 5.5,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-01-15T16:08:03.813",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/55960"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/60284"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://support.citrix.com/article/CTX140989"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/69432"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securitytracker.com/id/1030762"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://issues.apache.org/jira/browse/CLOUDSTACK-5263"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/55960"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/60284"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.citrix.com/article/CTX140989"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/69432"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1030762"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://blogs.apache.org/cloudstack/entry/cve_2013_6398_cloudstack_virtual"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://issues.apache.org/jira/browse/CLOUDSTACK-5263"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.