CVE-2013-2217 — Vulnetix

CVE-2013-2217 PUBLISHED CVSS 1.2000000476837158 LOW

cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/.

EPSS 0.12% · 31.1th percentile

Risk Scores

CVSS 2.0

1.2000000476837158

EPSS Score

0.12%

31.1th percentile

Affected Products

Vendor	Product	Versions
PyPI	suds-py3	0
opensuse	opensuse	12.2, 12.3
redhat	enterprise_linux	6.0, 5
jeff_ortel	suds	0.4
PyPI	suds	0
n/a	n/a	n/a

Exploit Intelligence

Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch (github-poc)
USN-2008-1 (circl)
https://bugzilla.redhat.com/show_bug.cgi?id=978696 (circl)

…and 2 more exploits

Timeline

Sep 23, 2013 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 16, 2023 EPSS Score
Sep 7, 2023 EPSS Score

References

Open in Interactive Console →