CVE-2013-4317 is a vulnerability in Apache CloudStack
Published on February 6, 2018
In Apache CloudStack 4.1.0 and 4.1.1, when calling the CloudStack API call listProjectAccounts as a regular, non-administrative user, the user is able to see information for accounts other than their own.
Products Associated with CVE-2013-4317
Want to know whenever a new CVE is published for Apache CloudStack? stack.watch will email you.
Affected Versions
Apache Software Foundation Apache CloudStack Version 4.1.0, 4.1.1 is affected by CVE-2013-4317Exploit Probability
EPSS
0.46%
Percentile
63.67%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.