CVE-2013-4778

Published: Jul 18, 2013Modified: Apr 29, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to obtain sensitive server and statistics information via unspecified vectors.

Affected (3)

Products: Siemens: Enterprise Openscape Branch, Openscape Session Border Controller

Siemens

2 products

Enterprise Openscape Branch

Openscape Session Border Controller

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Siemens Enterprise Openscape Branch	All versions
Siemens Openscape Session Border Controller	Version 1r4.17.0
Siemens Openscape Session Border Controller	Version 7r.0

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

http://www.securityfocus.com/bid/60555

Source: cve@mitre.org

https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130614-0_Siemens_OpenScape_Branch_SBC_Multiple_Vulnerabilities_v10.txt

Source: cve@mitre.org

http://www.securityfocus.com/bid/60555

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130614-0_Siemens_OpenScape_Branch_SBC_Multiple_Vulnerabilities_v10.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.