Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2013-4130

EPSS 1.10% · P78
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-4130

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Red Hat SPICE 多个拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Red Hat SPICE是美国红帽(Red Hat)公司的一个企业虚拟化桌面版所使用的自适应远程呈现开源协议,它主要用于将用户与其虚拟桌面进行连接,能够提供与物理桌面完全相同的最终用户体验。 Red Hat SPICE 0.12.3及之前的版本中的server/red_channel.c文件中的red_channel_pipes_add_type和red_channel_pipes_add_empty_msg函数中存在安全漏洞,该漏洞源于程序没有正确处理网络错误。远程攻击者可利用该漏洞造成拒绝服务(可达
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2013-4130

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2013-4130

登录查看更多情报信息。

Same Patch Batch · n/a · 2013-08-20 · 30 CVEs total

CVE-2013-4959Puppet Enterprise 信息泄露漏洞
CVE-2013-4653多款Alcatel-Lucent OmniTouch产品跨站脚本漏洞
CVE-2013-5321AlienVault OSSIM 多个SQL注入漏洞
CVE-2013-5320mojoportal 跨站脚本漏洞
CVE-2013-5319Atlassian JIRA ’name‘参数跨站脚本漏洞
CVE-2013-5318Ginkgo CMS ‘rang’参数SQL注入漏洞
CVE-2013-5317RiteCMS 跨站脚本漏洞
CVE-2013-5316RiteCMS 跨站请求伪造漏洞
CVE-2013-5323TYPO3 Static Info Tables 未明跨站脚本漏洞
CVE-2013-5322TYPO3 CoolURI 未明SQL注入漏洞
CVE-2012-6582Drupal Spambot 模块跨站脚本漏洞
CVE-2013-4967Puppet Enterprise 信任管理漏洞
CVE-2013-4964Puppet Enterprise 权限许可和访问控制漏洞
CVE-2013-4962Puppet Enterprise 信任管理漏洞
CVE-2013-4961Puppet Enterprise 信息泄露漏洞
CVE-2013-2153Apache Santuario XML Security for C++ XML Signature 安全绕过漏洞
CVE-2013-4958Puppet Enterprise 授权问题漏洞
CVE-2013-4956Puppet和Puppet Enterprise 安全绕过漏洞
CVE-2013-4955Puppet Enterprise 登录页面开放重定向漏洞
CVE-2013-4762Puppet Enterprise 输入验证漏洞

Showing top 20 of 30 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2013-4130

No comments yet

Leave a comment