Skip to main content
CVE-2013-5758 CRITICAL POC THREAT Emergency

cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system method in the body of a request, as demonstrated by running. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.7%.

Command Injection Sip T38G
NVD Exploit-DB
CVSS 2.0
9.0
EPSS
11.7%
CVE-2013-5757 MEDIUM POC This Month

Absolute path traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a full pathname in the dumpConfigFile function in the command. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sip T38G
NVD Exploit-DB
CVSS 2.0
4.0
EPSS
9.5%
CVE-2013-5756 MEDIUM POC This Month

Directory traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a .. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sip T38G
NVD Exploit-DB
CVSS 2.0
4.0
EPSS
7.9%
CVE-2014-0179 LOW PATCH Monitor

libvirt 0.7.5 through 1.2.x before 1.2.5 allows local users to cause a denial of service (read block and hang) via a crafted XML document containing an XML external entity declaration in conjunction. Rated low severity (CVSS 1.9).

Denial Of Service XXE Libvirt Enterprise Virtualization Opensuse +1
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-5177 LOW PATCH Monitor

libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an XML external entity. Rated low severity (CVSS 1.2).

XXE Enterprise Virtualization Opensuse Enterprise Linux Libvirt
NVD
CVSS 2.0
1.2
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy