CVE-2013-6766 - Vulnerability Details - OpenCVE

OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version information, which causes the state to be set to CLIENT_AUTHENTIC.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Openvas	Openvas Administrator

Configuration 1 [-]

OR	cpe:2.3:a:openvas:openvas_administrator:1.2:rc1::::::
	cpe:2.3:a:openvas:openvas_administrator:1.2.0:::::::*
	cpe:2.3:a:openvas:openvas_administrator:1.2.1:::::::*
	cpe:2.3:a:openvas:openvas_administrator:1.3:beta1::::::
	cpe:2.3:a:openvas:openvas_administrator:1.3:rc1::::::
	cpe:2.3:a:openvas:openvas_administrator:1.3.0:::::::*
	cpe:2.3:a:openvas:openvas_administrator:1.3.1:::::::*

No data.

References

Link	Providers
http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html
http://www.openvas.org/OVSA20131108.html
http://www.openwall.com/lists/oss-security/2013/11/10/2

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-05-19T14:00:00

Updated: 2024-08-06T17:46:23.430Z

Reserved: 2013-11-09T00:00:00

Link: CVE-2013-6766

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2014-05-19T14:55:09.533

Modified: 2025-04-12T10:46:40.837

Link: CVE-2013-6766

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-11-08T00:00:00", "descriptions": [{"lang": "en", "value": "OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version information, which causes the state to be set to CLIENT_AUTHENTIC."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-05-19T13:57:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[Openvas-announce] 20131108 Security Releases for OpenVAS-5 and OpenVAS-6", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html"}, {"name": "[oss-security] 20131110 CVE-2013-6765 CVE-2013-6766 for OpenVAS 4.0.4/1.3.2/etc.", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2013/11/10/2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.openvas.org/OVSA20131108.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-6766", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version information, which causes the state to be set to CLIENT_AUTHENTIC."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[Openvas-announce] 20131108 Security Releases for OpenVAS-5 and OpenVAS-6", "refsource": "MLIST", "url": "http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html"}, {"name": "[oss-security] 20131110 CVE-2013-6765 CVE-2013-6766 for OpenVAS 4.0.4/1.3.2/etc.", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2013/11/10/2"}, {"name": "http://www.openvas.org/OVSA20131108.html", "refsource": "CONFIRM", "url": "http://www.openvas.org/OVSA20131108.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T17:46:23.430Z"}, "title": "CVE Program Container", "references": [{"name": "[Openvas-announce] 20131108 Security Releases for OpenVAS-5 and OpenVAS-6", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html"}, {"name": "[oss-security] 20131110 CVE-2013-6765 CVE-2013-6766 for OpenVAS 4.0.4/1.3.2/etc.", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2013/11/10/2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.openvas.org/OVSA20131108.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-6766", "datePublished": "2014-05-19T14:00:00", "dateReserved": "2013-11-09T00:00:00", "dateUpdated": "2024-08-06T17:46:23.430Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "B5A359E0-1E06-4691-9E7B-D5A6E15B84F6", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "51E43D7F-E3BB-4557-B407-28525160D5D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "06EABC14-4312-4AD9-9AE8-9576DD69C16A", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.3:beta1:*:*:*:*:*:*", "matchCriteriaId": "C7CD897C-4DF6-4F08-A33F-2C210B7D74D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "8351F68D-F762-4872-9A20-ABB7D2F4CCE0", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "BCBD7C05-AD08-40D7-9B65-6498CCE114B5", "vulnerable": true}, {"criteria": "cpe:2.3:a:openvas:openvas_administrator:1.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "E7EF8F86-58FA-4633-99EF-B5E6A24896B3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "OpenVAS Administrator 1.2 before 1.2.2 and 1.3 before 1.3.2 allows remote attackers to bypass the OAP authentication restrictions and execute OAP commands via a crafted OAP request for version information, which causes the state to be set to CLIENT_AUTHENTIC."}, {"lang": "es", "value": "OpenVAS Administrator 1.2 anterior a 1.2.2 y 1.3 anterior a 1.3.2 permite a atacantes remotos evadir las restricciones de autenticaci\u00f3n OAP y ejecutar comandos OAP a trav\u00e9s de una solicitud OAP manipulada para informaci\u00f3n de versi\u00f3n, lo que causa que el estado se configure como CLIENT_AUTHENTIC."}], "id": "CVE-2013-6766", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-05-19T14:55:09.533", "references": [{"source": "cve@mitre.org", "url": "http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.openvas.org/OVSA20131108.html"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2013/11/10/2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.wald.intevation.org/pipermail/openvas-announce/2013-November/000157.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.openvas.org/OVSA20131108.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2013/11/10/2"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}