CVE-2013-6785: Path Traversal
First published: Thu Jan 23 2020(Updated: )
Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Supermicro Intelligent Platform Management Interface | <smt_x9_315 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2013-6785.
What is the severity of CVE-2013-6785?
The severity of CVE-2013-6785 is medium with a CVSS score of 4.3.
What is the affected software for CVE-2013-6785?
The affected software for CVE-2013-6785 is Supermicro Intelligent Platform Management Interface (IPMI) before SMT_X9_315.
How does CVE-2013-6785 work?
CVE-2013-6785 is a directory traversal vulnerability that allows authenticated attackers to read arbitrary files via the url_name parameter in the url_redirect.cgi script.
How can I fix CVE-2013-6785?
To fix CVE-2013-6785, it is recommended to update Supermicro IPMI to version SMT_X9_315 or higher.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/tags
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/supermicro
- canonical/supermicro intelligent platform management interface