CVE-2013-5973 - Vulnerability Details - OpenCVE

VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Vmware	Esx Esxi

Configuration 1 [-]

OR	cpe:2.3:o:vmware:esx:4.0:::::::*
	cpe:2.3:o:vmware:esx:4.1:::::::*

Configuration 2 [-]

OR	cpe:2.3:o:vmware:esxi:4.0:::::::*
	cpe:2.3:o:vmware:esxi:4.0:1::::::
	cpe:2.3:o:vmware:esxi:4.0:2::::::
	cpe:2.3:o:vmware:esxi:4.0:3::::::
	cpe:2.3:o:vmware:esxi:4.0:4::::::
	cpe:2.3:o:vmware:esxi:4.1:::::::*
	cpe:2.3:o:vmware:esxi:4.1:1::::::
	cpe:2.3:o:vmware:esxi:4.1:2::::::
	cpe:2.3:o:vmware:esxi:5.0:::::::*
	cpe:2.3:o:vmware:esxi:5.0:1::::::
	cpe:2.3:o:vmware:esxi:5.0:2::::::
	cpe:2.3:o:vmware:esxi:5.1:::::::*
	cpe:2.3:o:vmware:esxi:5.1:1::::::
	cpe:2.3:o:vmware:esxi:5.5:::::::*

No data.

References

Link	Providers
http://jvn.jp/en/jp/JVN13154935/index.html
http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html
http://osvdb.org/101387
http://www.securityfocus.com/archive/1/530482/100/0/threaded
http://www.securityfocus.com/bid/64491
http://www.securitytracker.com/id/1029529
http://www.vmware.com/security/advisories/VMSA-2013-0016.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/89938

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-12-23T15:00:00

Updated: 2024-08-06T17:29:42.356Z

Reserved: 2013-10-01T00:00:00

Link: CVE-2013-5973

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2013-12-23T15:42:30.137

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-5973

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-12-22T00:00:00", "descriptions": [{"lang": "en", "value": "VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-09T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "vmware-esx-esxi-cve20135973-sec-bypass(89938)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89938"}, {"name": "20131223 NEW VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/530482/100/0/threaded"}, {"name": "101387", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/101387"}, {"name": "JVN#13154935", "tags": ["third-party-advisory", "x_refsource_JVN"], "url": "http://jvn.jp/en/jp/JVN13154935/index.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html"}, {"name": "JVNDB-2013-000123", "tags": ["third-party-advisory", "x_refsource_JVNDB"], "url": "http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html"}, {"name": "64491", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/64491"}, {"name": "1029529", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1029529"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-5973", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "vmware-esx-esxi-cve20135973-sec-bypass(89938)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89938"}, {"name": "20131223 NEW VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/530482/100/0/threaded"}, {"name": "101387", "refsource": "OSVDB", "url": "http://osvdb.org/101387"}, {"name": "JVN#13154935", "refsource": "JVN", "url": "http://jvn.jp/en/jp/JVN13154935/index.html"}, {"name": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html", "refsource": "CONFIRM", "url": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html"}, {"name": "JVNDB-2013-000123", "refsource": "JVNDB", "url": "http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html"}, {"name": "64491", "refsource": "BID", "url": "http://www.securityfocus.com/bid/64491"}, {"name": "1029529", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1029529"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T17:29:42.356Z"}, "title": "CVE Program Container", "references": [{"name": "vmware-esx-esxi-cve20135973-sec-bypass(89938)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89938"}, {"name": "20131223 NEW VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/530482/100/0/threaded"}, {"name": "101387", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/101387"}, {"name": "JVN#13154935", "tags": ["third-party-advisory", "x_refsource_JVN", "x_transferred"], "url": "http://jvn.jp/en/jp/JVN13154935/index.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html"}, {"name": "JVNDB-2013-000123", "tags": ["third-party-advisory", "x_refsource_JVNDB", "x_transferred"], "url": "http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html"}, {"name": "64491", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/64491"}, {"name": "1029529", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1029529"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-5973", "datePublished": "2013-12-23T15:00:00", "dateReserved": "2013-10-01T00:00:00", "dateUpdated": "2024-08-06T17:29:42.356Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "BC337BB7-9A45-4406-A783-851F279130EE", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "0B6BA46F-4E8C-4B2A-AE92-81B9F1B4D56C", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "13771B15-CD71-472A-BE56-718B87D5825D", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.0:1:*:*:*:*:*:*", "matchCriteriaId": "0A4E41C0-31FA-47AA-A9BF-B9A6C1D44801", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.0:2:*:*:*:*:*:*", "matchCriteriaId": "AF016EE7-083A-4D62-A6D4-2807EB47B6DB", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.0:3:*:*:*:*:*:*", "matchCriteriaId": "8F11844A-3C6C-4AA5-87DC-979AFF62867A", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.0:4:*:*:*:*:*:*", "matchCriteriaId": "AC463653-A599-45CF-8EA9-8854D5C59963", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "4BDE707D-A1F4-4829-843E-F6633BB84D6D", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.1:1:*:*:*:*:*:*", "matchCriteriaId": "4DC5C2BF-6EC6-436F-A925-469E87249C8A", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:4.1:2:*:*:*:*:*:*", "matchCriteriaId": "7BCE5DA9-BB88-4169-B77C-40B1F98D511A", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "E2331236-2E9B-4B52-81EE-B52DEB41ACE5", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*", "matchCriteriaId": "7C5A1C2B-119E-49F3-B8E6-0610EE1C445C", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*", "matchCriteriaId": "AF29B5A4-6E4C-4EAE-BC6A-0DD44262EE35", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "7217CBE1-3882-4045-A15C-EE7D4174CA00", "vulnerable": true}, {"criteria": "cpe:2.3:o:vmware:esxi:5.1:1:*:*:*:*:*:*", "matchCriteriaId": "9A405802-D786-46F9-9E29-C727F9FD480A", "vulnerable": false}, {"criteria": "cpe:2.3:o:vmware:esxi:5.5:*:*:*:*:*:*:*", "matchCriteriaId": "469D98A5-7B8B-41BE-94C6-D6EF25388007", "vulnerable": false}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename."}, {"lang": "es", "value": "VMware ESXi 4.0 a 5.5 y ESX 4.0 y 4.1 permiten a usuarios locales leer o modificar ficheros arbitrarios mediante el aprovechamiento de los roles Virtual Machine Power User o Resource Pool Administrator para una acci\u00f3n Add Existing Disk en vCenter con nombres de fichero (1) -flat, (2) -rdm o (3) -rdmp."}], "id": "CVE-2013-5973", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-12-23T15:42:30.137", "references": [{"source": "cve@mitre.org", "url": "http://jvn.jp/en/jp/JVN13154935/index.html"}, {"source": "cve@mitre.org", "url": "http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/101387"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/530482/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/64491"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1029529"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89938"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://jvn.jp/en/jp/JVN13154935/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000123.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/101387"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/530482/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/64491"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1029529"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vmware.com/security/advisories/VMSA-2013-0016.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89938"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}