VDB
CVE-2013-6021
CVE-2013-6021
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Buffer overflow in WGagent in WatchGuard WSM and Fireware before 11.8 allows remote attackers to execute arbitrary code via a long sessionid value in a cookie.
EPSS 54.04% · 98.1th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
54.04%
98.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| watchguard | fireware | 11.7.2, 0, 11.0.2 |
| n/a | n/a | * |
Timeline
- Oct 18, 2013 CVE Published
- Oct 29, 2013 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- https://funoverip.net/2013/10/watchguard-cve-2013-6021-stack-based-buffer-overflow-exploit/ url
- 29273 exploit
- 98752 vdb
- http://watchguardsecuritycenter.com/2013/10/17/xtm-11-8-secfixes/ url
- http://watchguardsecuritycenter.com/2013/10/17/watchguard-dimension-and-fireware-xtm-11-8/ url
- 63227 vdb
- VU#233990 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2013-6021 advisory
- https://funoverip.net/2013/10/watchguard-cve-2013-6021-stack-based-buffer-overflow-exploit url
- http://watchguardsecuritycenter.com/2013/10/17/watchguard-dimension-and-fireware-xtm-11-8 url
- http://watchguardsecuritycenter.com/2013/10/17/xtm-11-8-secfixes url