CVE-2013-6448
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2013-6448
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restriction and obtain information about arbitrary classes and methods on the server classpath via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Red Hat Jboss Web Framework Kit 安全绕过漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
JBoss Seam 2 Framework是美国红帽(Red Hat)公司的一种企业级Java的应用程序框架,它为所有企业Web应用中的组件提供了一个统一的、易于理解的编程模型。 Jboss Web Framework Kit中使用的JBoss Seam 2 framework 2.3.1及之前的版本中的Jboss Seam Remoting中的InterfaceGenerator处理器中存在安全绕过漏洞。远程攻击者可利用该漏洞绕过WebRemote注释限制,获取服务器类路径下的任意类和方法的信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2013-6448
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2013-6448
Please Login to view more intelligence information
- https://bugzilla.redhat.com/show_bug.cgi?id=1044794x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2013-6448
Same Patch Batch · n/a · 2014-01-23 · 25 CVEs total
| CVE-2013-7310 | Yamaha Routers OSPF 安全漏洞 | |
| CVE-2013-6447 | Red Hat Jboss Web Framework Kit XML外部实体漏洞 | |
| CVE-2013-6412 | Augeas transform_save’函数安全漏洞 | |
| CVE-2014-0979 | LightDM GTK+ Greeter 本地拒绝服务漏洞 | |
| CVE-2014-0006 | OpenStack Object Storage 信息泄露漏洞 | |
| CVE-2013-6443 | Red Hat CloudForms Management Engine 跨站请求伪造漏洞 | |
| CVE-2014-0675 | Cisco TelePresence Video Communication Server 信任管理漏洞 | |
| CVE-2012-6447 | Splunk 跨站脚本漏洞 | |
| CVE-2013-7314 | NEC IP38X/IX1000/IX2000/IX3000 OSPF 安全漏洞 | |
| CVE-2013-7313 | Juniper Junos/JunosE/ScreenOS OSPF 安全漏洞 | |
| CVE-2013-7312 | Enterasys Switches/Routers OSPF 安全漏洞 | |
| CVE-2013-7311 | Check Point Gaia/IPSO OS OSPF 安全漏洞 | |
| CVE-2013-4152 | Vmware Spring Framework 权限许可和访问控制问题漏洞 | |
| CVE-2013-7309 | Extreme Networks EXOS OSPF 安全漏洞 | |
| CVE-2013-7308 | D-Link DES-3810-28 Switch OSPF 安全漏洞 | |
| CVE-2013-7307 | Brocade Vyatta vRouter OSPF 安全漏洞 | |
| CVE-2013-7306 | Brocade Routers OSPF 输入验证漏洞 | |
| CVE-2014-1242 | Apple iTunes 加密问题漏洞 | |
| CVE-2014-0494 | Adobe Digital Editions 缓冲区溢出漏洞 | |
| CVE-2013-5371 | IBM Tivoli Storage Manager 权限许可和访问控制漏洞 |
Showing top 20 of 25 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8258
Squirrel sqstdstring.cpp validate_format stack-based overflo - CVE-2026-8252
Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer - CVE-2026-8251
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo
V. Comments for CVE-2013-6448
No comments yet