CVE-2013-1915 vulnerability in Trustwave and Other Products
Published on April 25, 2013

ModSecurity before 2.7.3 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML external entity declaration in conjunction with an entity reference, aka an XML External Entity (XXE) vulnerability.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2013-1915

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2013-1915 are published in these products:

Trustwave Modsecurity

Debian Linux

Fedora Project Fedora

OpenSuse

Exploit Probability

EPSS

4.85%

Percentile

89.30%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2013-1915 vulnerability in Trustwave and Other ProductsPublished on April 25, 2013

Products Associated with CVE-2013-1915

Exploit Probability

CVE-2013-1915 vulnerability in Trustwave and Other Products
Published on April 25, 2013