CVE-2013-1814

Published: 14/03/2013 Updated: 03/07/2013

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 405

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

The users/get program in the User RPC API in Apache Rave 0.11 up to and including 0.20 allows remote authenticated users to obtain sensitive information about all user accounts via the offset parameter, as demonstrated by discovering password hashes in the password field of a response.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache rave 0.19
apache rave 0.16
apache rave 0.18
apache rave 0.11
apache rave 0.20
apache rave 0.13
apache rave 0.17
apache rave 0.14
apache rave 0.12
apache rave 0.15

CVE-2013-1814: Apache Rave exposes User over API Severity: Important Vendor: The Apache Software Foundation Versions Affected: Rave 011 to 020 Description: Rave returns the full user object, including the salted and hashed password, via the User RPC API This endpoint is only available to authenticated users, but will return all User objects ...

Apache Rave returns the full user object, including the salted and hashed password, via the User RPC API This endpoint is only available to authenticated users, but will return all User objects in the database given the correct query Versions 011 through 020 are affected ...

CWE-200 http://archives.neohapsis.com/archives/bugtraq/2013-03/0078.html http://www.exploit-db.com/exploits/24744/https://nvd.nist.gov https://www.exploit-db.com/exploits/24744/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-1814

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect