Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
4 vulnerabilities by x2go
CVE-2013-7383 (GCVE-0-2013-7383)
Vulnerability from nvd – Published: 2014-05-20 14:00 – Updated: 2024-08-06 18:09
VLAI
EPSS
VEX
Summary
x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/65001 | vdb-entryx_refsource_BID |
| http://www.openwall.com/lists/oss-security/2014/05/18/1 | mailing-listx_refsource_MLIST |
| http://permalink.gmane.org/gmane.linux.terminal-s… | mailing-listx_refsource_MLIST |
| http://www.openwall.com/lists/oss-security/2014/05/19/4 | mailing-listx_refsource_MLIST |
| http://security.gentoo.org/glsa/glsa-201405-26.xml | vendor-advisoryx_refsource_GENTOO |
Date Public
2014-01-03 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T18:09:17.062Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "65001",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-03T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-05-20T12:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "65001",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-7383",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "65001",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"refsource": "MLIST",
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-7383",
"datePublished": "2014-05-20T14:00:00.000Z",
"dateReserved": "2014-05-19T00:00:00.000Z",
"dateUpdated": "2024-08-06T18:09:17.062Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4376 (GCVE-0-2013-4376)
Vulnerability from nvd – Published: 2013-12-09 11:00 – Updated: 2024-08-06 16:38
VLAI
EPSS
VEX
Summary
The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
4 references
| URL | Tags |
|---|---|
| http://security.gentoo.org/glsa/glsa-201310-19.xml | vendor-advisoryx_refsource_GENTOO |
| http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=… | x_refsource_CONFIRM |
| http://www.openwall.com/lists/oss-security/2013/0… | mailing-listx_refsource_MLIST |
| https://lists.berlios.de/pipermail/x2go-announcem… | mailing-listx_refsource_MLIST |
Date Public
2013-05-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:38:02.171Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "GLSA-201310-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=commit%3Bh=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-05-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-12-02T20:57:01.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "GLSA-201310-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=commit%3Bh=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4376",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "GLSA-201310-19",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"name": "http://code.x2go.org/gitweb?p=x2goserver.git;a=commit;h=42264c88d7885474ebe3763b2991681ddfcfa69a",
"refsource": "CONFIRM",
"url": "http://code.x2go.org/gitweb?p=x2goserver.git;a=commit;h=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"refsource": "MLIST",
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4376",
"datePublished": "2013-12-09T11:00:00.000Z",
"dateReserved": "2013-06-12T00:00:00.000Z",
"dateUpdated": "2024-08-06T16:38:02.171Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-7383 (GCVE-0-2013-7383)
Vulnerability from cvelistv5 – Published: 2014-05-20 14:00 – Updated: 2024-08-06 18:09
VLAI
EPSS
VEX
Summary
x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/65001 | vdb-entryx_refsource_BID |
| http://www.openwall.com/lists/oss-security/2014/05/18/1 | mailing-listx_refsource_MLIST |
| http://permalink.gmane.org/gmane.linux.terminal-s… | mailing-listx_refsource_MLIST |
| http://www.openwall.com/lists/oss-security/2014/05/19/4 | mailing-listx_refsource_MLIST |
| http://security.gentoo.org/glsa/glsa-201405-26.xml | vendor-advisoryx_refsource_GENTOO |
Date Public
2014-01-03 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T18:09:17.062Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "65001",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-03T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-05-20T12:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "65001",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-7383",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "65001",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/65001"
},
{
"name": "[oss-security] 20140517 CVE request: X2Go Server privilege escalation",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/05/18/1"
},
{
"name": "[x2go-announcements] 20140103 X2Go Server (4.0.1.10) released",
"refsource": "MLIST",
"url": "http://permalink.gmane.org/gmane.linux.terminal-server.x2go.announce/83"
},
{
"name": "[oss-security] 20140519 Re: CVE request: X2Go Server privilege escalation",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/05/19/4"
},
{
"name": "GLSA-201405-26",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201405-26.xml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-7383",
"datePublished": "2014-05-20T14:00:00.000Z",
"dateReserved": "2014-05-19T00:00:00.000Z",
"dateUpdated": "2024-08-06T18:09:17.062Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4376 (GCVE-0-2013-4376)
Vulnerability from cvelistv5 – Published: 2013-12-09 11:00 – Updated: 2024-08-06 16:38
VLAI
EPSS
VEX
Summary
The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
4 references
| URL | Tags |
|---|---|
| http://security.gentoo.org/glsa/glsa-201310-19.xml | vendor-advisoryx_refsource_GENTOO |
| http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=… | x_refsource_CONFIRM |
| http://www.openwall.com/lists/oss-security/2013/0… | mailing-listx_refsource_MLIST |
| https://lists.berlios.de/pipermail/x2go-announcem… | mailing-listx_refsource_MLIST |
Date Public
2013-05-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:38:02.171Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "GLSA-201310-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=commit%3Bh=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2013-05-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-12-02T20:57:01.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "GLSA-201310-19",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://code.x2go.org/gitweb?p=x2goserver.git%3Ba=commit%3Bh=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4376",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The setgid wrapper libx2go-server-db-sqlite3-wrapper.c in X2Go Server before 4.0.0.2 allows remote attackers to execute arbitrary code via unspecified vectors, related to the path to libx2go-server-db-sqlite3-wrapper.pl."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "GLSA-201310-19",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201310-19.xml"
},
{
"name": "http://code.x2go.org/gitweb?p=x2goserver.git;a=commit;h=42264c88d7885474ebe3763b2991681ddfcfa69a",
"refsource": "CONFIRM",
"url": "http://code.x2go.org/gitweb?p=x2goserver.git;a=commit;h=42264c88d7885474ebe3763b2991681ddfcfa69a"
},
{
"name": "[oss-security] 20130925 Re: CVE request: X2Go server",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2013/09/25/11"
},
{
"name": "[X2Go-Announcement] 20130519 X2Go Server (4.0.0.2) released",
"refsource": "MLIST",
"url": "https://lists.berlios.de/pipermail/x2go-announcement/2013-May/000125.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4376",
"datePublished": "2013-12-09T11:00:00.000Z",
"dateReserved": "2013-06-12T00:00:00.000Z",
"dateUpdated": "2024-08-06T16:38:02.171Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}