CVE-2013-4766

The gather log service in Eucalyptus before 3.3.1 allows remote attackers to read log files via an unspecified request to the (1) Cluster Controller (CC) or (2) Node Controller (NC) component.

Published: Sep 17, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-4766
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
eucalyptus / eucalyptus	3.2.2	3.2.2.x
eucalyptus / eucalyptus	1.1	1.1.x
eucalyptus / eucalyptus	1.6	1.6.x
eucalyptus / eucalyptus	3.0.1	3.0.1.x
eucalyptus / eucalyptus	1.5.2	1.5.2.x
eucalyptus / eucalyptus	1.2	1.2.x
eucalyptus / eucalyptus	1.5.1	1.5.1.x
eucalyptus / eucalyptus	3.1.0	3.1.0.x
eucalyptus / eucalyptus	-	3.3.0.x
eucalyptus / eucalyptus	3.1.1	3.1.1.x
eucalyptus / eucalyptus	2.0.3	2.0.3.x
eucalyptus / eucalyptus	2.0	2.0.x
eucalyptus / eucalyptus	3.1.2	3.1.2.x
eucalyptus / eucalyptus	3.0	3.0.x
eucalyptus / eucalyptus	3.2.1	3.2.1.x
eucalyptus / eucalyptus	1.4	1.4.x
eucalyptus / eucalyptus	3.2.0	3.2.0.x
eucalyptus / eucalyptus	2.0.0	2.0.0.x
eucalyptus / eucalyptus	2.0.2	2.0.2.x
eucalyptus / eucalyptus	1.0	1.0.x
eucalyptus / eucalyptus	1.6.2	1.6.2.x
eucalyptus / eucalyptus	1.3	1.3.x
eucalyptus / eucalyptus	2.0.1	2.0.1.x

http://www.eucalyptus.com/resources/security/advisories/esa-13

Vulnerability Database

CVE-2013-4766