Hash Collisions in Apache CloudStack and Citrix CloudPlatform
CVE-2013-2758

Currently unrated

Key Information:

Vendor

Apache
Status
Cloudstack
Cloudplatform
Vendor
CVE Published:
23 May 2014

What is CVE-2013-2758?

A vulnerability exists in Apache CloudStack versions before 4.0.2 and Citrix CloudPlatform versions before 3.0.6 Patch C, where a predictable hash sequence allows remote attackers to exploit console access URLs. This predictability can lead to unauthorized access through brute force attempts, posing significant security risks for the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://osvdb.org/92749
vdb-entryx_refsource_OSVDB
http://support.citrix.com/article/CTX135815
x_refsource_CONFIRM
http://mail-archives.apache.org/mod_mbox/cloudstack-dev/2...
mailing-listx_refsource_MLIST

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.