CVE-2013-6765

OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENT_AUTHENTIC, as demonstrated by the omp_xml_handle_end_element function in omp.c.

Published: May 19, 2014
Updated: Nov 9, 2025
CVE: CVE-2013-6765
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
openvas / openvas_manager	4.0-beta1	4.0-beta1.x
openvas / openvas_manager	4.0-rc1	4.0-rc1.x
openvas / openvas_manager	4.0.1	4.0.1.x
openvas / openvas_manager	4.0-beta2	4.0-beta2.x
openvas / openvas_manager	4.0-beta4	4.0-beta4.x
openvas / openvas_manager	4.0.3	4.0.3.x
openvas / openvas_manager	4.0-beta5	4.0-beta5.x
openvas / openvas_manager	4.0-beta3	4.0-beta3.x
openvas / openvas_manager	4.0.2	4.0.2.x
openvas / openvas_manager	4.0.0	4.0.0.x
openvas / openvas_manager	3.0-beta5	3.0-beta5.x
openvas / openvas_manager	3.0.0	3.0.0.x
openvas / openvas_manager	3.0.2	3.0.2.x
openvas / openvas_manager	3.0.1	3.0.1.x
openvas / openvas_manager	3.0.4	3.0.4.x
openvas / openvas_manager	3.0-beta3	3.0-beta3.x
openvas / openvas_manager	3.0-beta4	3.0-beta4.x
openvas / openvas_manager	3.0-beta8	3.0-beta8.x
openvas / openvas_manager	3.0-beta6	3.0-beta6.x
openvas / openvas_manager	3.0-rc1	3.0-rc1.x
openvas / openvas_manager	3.0.6	3.0.6.x
openvas / openvas_manager	3.0-beta2	3.0-beta2.x
openvas / openvas_manager	3.0.5	3.0.5.x
openvas / openvas_manager	3.0-beta1	3.0-beta1.x
openvas / openvas_manager	3.0.3	3.0.3.x
openvas / openvas_manager	3.0-beta7	3.0-beta7.x

Vulnerability Database

299,879

CVE-2013-6765

Deep Security Visibility Without the Complexity