CVE-2013-2756

Currently unrated

Key Information:

Vendor: Apache
Status: Cloudstack; Cloudplatform
Vendor: CVE Published:; 23 May 2014

Summary

Apache CloudStack 4.0.0 before 4.0.2 and Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C allows remote attackers to bypass the console proxy authentication by leveraging knowledge of the source code.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/83781

vdb-entryx_refsource_XF

http://support.citrix.com/article/CTX135815

x_refsource_CONFIRM

http://mail-archives.apache.org/mod_mbox/cloudstack-dev/2...

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
May 23, 2014
Vulnerability Reserved
Apr 3, 2013