CVE-2013-6618

{"id": "CVE-2013-6618", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-11-05T20:55:30.243", "references": [{"url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/54731", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.exploit-db.com/exploits/29544", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/62305", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1029016", "source": "cve@mitre.org"}, {"url": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "tags": ["Exploit", "URL Repurposed"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87011", "source": "cve@mitre.org"}, {"url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/54731", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.exploit-db.com/exploits/29544", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/62305", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1029016", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "tags": ["Exploit", "URL Repurposed"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87011", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action."}, {"lang": "es", "value": "jsdm / ajax / port.php de J-Web en Juniper Junos anterior 10.4R13, 11.4 anterior a 11.4R, 12,.1 anterior a 12.1R5  anterior a 12.2R3 y 12.3 antes 12.3R1 permite a usuarios remotos autenticados ejecutar comandos arbitrarios a trav\u00e9s del par\u00e1metro rsargs en una acci\u00f3n exec."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87B7BB4C-BF3D-4E88-9422-816CB5ECE523", "versionEndIncluding": "10.4"}, {"criteria": "cpe:2.3:o:juniper:junos:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8FFDD73-F4A7-42BC-8CEF-4E7CC469CF28"}, {"criteria": "cpe:2.3:o:juniper:junos:10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3546BA8D-CEA4-4C95-B18F-4AC112195008"}, {"criteria": "cpe:2.3:o:juniper:junos:10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DC12ED6-463F-4576-80F4-E1B697B579B7"}, {"criteria": "cpe:2.3:o:juniper:junos:10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37235C6B-B7B8-41EC-A1D2-336D8BAD9DBF"}, {"criteria": "cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41543223-0FA9-4CBE-8DEC-717CE5FFED79"}, {"criteria": "cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B40B8FD6-A597-4845-8E8E-63EFDF606006"}, {"criteria": "cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FB9541A-2570-459A-87D6-5341C67B8EC8"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E014A0D-0054-4EBA-BA1F-035B74BD822F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}