CVE

Id
62698  
CVE No.
CVE-2013-2751  
Status
Candidate  
Description
Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface in NETGEAR ReadyNAS RAIDiator before 4.1.12 and 4.2.x before 4.2.24 allows remote attackers to execute arbitrary Perl code via a crafted request, related to the "forgot password workflow."  
Phase
Assigned (20130402)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
626033 62698 CVE-2013-2751 EXPLOIT-DB:29815  View
626034 62698 CVE-2013-2751 URL:http://www.exploit-db.com/exploits/29815  View
626035 62698 CVE-2013-2751 MISC:http://packetstormsecurity.com/files/123726/Netgear-ReadyNAS-Complete-System-Takeover.html  View
626036 62698 CVE-2013-2751 MISC:http://www.readynas.com/?p=7002  View
626037 62698 CVE-2013-2751 MISC:http://www.tripwire.com/register/security-advisory-netgear-readynas/  View
626038 62698 CVE-2013-2751 MISC:http://www.tripwire.com/state-of-security/vulnerability-management/readynas-flaw-allows-root-access-unauthenticated-http-request/  View
626039 62698 CVE-2013-2751 OSVDB:98826  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24925 JVNDB-2013-006500 Apache CloudStack および Citrix CloudPlatform におけるコンソールのプロキシ認証を回避される脆弱性 Apache CloudStack および Citrix CloudPlatform (旧 Citrix CloudStack) には、コンソールのプロキシ認証を回避される脆弱性が存在します。 CVE-2013-2756 62698 5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-006500.html  View