CVE-2013-4611 - OpenCVE

Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants page.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Project-redcap	Redcap
Vanderbilt	Redcap

Configuration 1 [-]

OR	cpe:2.3:a:project-redcap:redcap:4.13.18:::::::*
	cpe:2.3:a:project-redcap:redcap:4.14.5:::::::*
	cpe:2.3:a:project-redcap:redcap:4.14.6:::::::*
	cpe:2.3:a:project-redcap:redcap:4.15.0:::::::*
	cpe:2.3:a:project-redcap:redcap:4.15.1:::::::*
	cpe:2.3:a:project-redcap:redcap:4.15.2:::::::*
	cpe:2.3:a:project-redcap:redcap:4.15.3:::::::*
	cpe:2.3:a:project-redcap:redcap:4.15.4:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.0:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.1:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.2:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.3:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.4:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.5:::::::*
	cpe:2.3:a:project-redcap:redcap:5.0.6:::::::*
	cpe:2.3:a:vanderbilt:redcap::::::::
	cpe:2.3:a:vanderbilt:redcap:4.14.0:::::::*
	cpe:2.3:a:vanderbilt:redcap:4.14.1:::::::*
	cpe:2.3:a:vanderbilt:redcap:4.14.2:::::::*
	cpe:2.3:a:vanderbilt:redcap:4.14.3:::::::*
	cpe:2.3:a:vanderbilt:redcap:4.14.4:::::::*

No data.

References

Link	Providers
http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-06-17T10:00:00Z

Updated: 2024-09-17T04:19:21.749Z

Reserved: 2013-06-17T00:00:00Z

Link: CVE-2013-4611

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2013-06-17T11:38:53.613

Modified: 2021-07-01T16:58:59.473

Link: CVE-2013-4611

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants page."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-06-17T10:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-4611", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants page."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf", "refsource": "CONFIRM", "url": "http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T16:52:26.371Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-4611", "datePublished": "2013-06-17T10:00:00Z", "dateReserved": "2013-06-17T00:00:00Z", "dateUpdated": "2024-09-17T04:19:21.749Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:project-redcap:redcap:4.13.18:*:*:*:*:*:*:*", "matchCriteriaId": "58C92B2E-A9AF-43B4-B1E4-7A873AF1DEAD", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.14.5:*:*:*:*:*:*:*", "matchCriteriaId": "DA4E7E65-1147-4620-B31F-617D34822E9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.14.6:*:*:*:*:*:*:*", "matchCriteriaId": "00CED35E-7640-44D4-B5A4-EED2D0163C79", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.15.0:*:*:*:*:*:*:*", "matchCriteriaId": "61C3C73D-1818-4DB7-A806-FC999EADE7E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.15.1:*:*:*:*:*:*:*", "matchCriteriaId": "8347F389-9331-4689-B52A-87ABFFF02141", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.15.2:*:*:*:*:*:*:*", "matchCriteriaId": "B739D2A5-46DF-4CE8-9BAB-6BB94743D21D", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.15.3:*:*:*:*:*:*:*", "matchCriteriaId": "7969B764-47A6-4AC7-B18E-236FF25C6552", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:4.15.4:*:*:*:*:*:*:*", "matchCriteriaId": "26E48768-FDF1-4A54-8F0E-EC4732B55D66", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "F62B324D-6F70-41B8-B3AC-CDA6D4C3AB25", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "7712A887-BB81-4FAE-9B76-FB9886BE41D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "817D8D01-B8E1-4F86-9ACE-0CAF87DA13A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "5241C18D-9714-4DEA-9552-55DD3FBE4613", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "220E8227-7D41-48A9-9D61-BEB47EB19FCA", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "0D82141E-A1F3-474C-86CE-C7409C4E445F", "vulnerable": true}, {"criteria": "cpe:2.3:a:project-redcap:redcap:5.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "7B2AB13A-9C46-4F92-B0D4-96358CF0FDC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:*:*:*:*:*:*:*:*", "matchCriteriaId": "C765A45C-FBBA-4AA0-97BB-9945A8456072", "versionEndIncluding": "5.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:4.14.0:*:*:*:*:*:*:*", "matchCriteriaId": "D293B038-228E-42B6-BC99-9BDFCD8D562C", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:4.14.1:*:*:*:*:*:*:*", "matchCriteriaId": "789C86D0-A11F-4C40-950A-5A617AD7C23A", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:4.14.2:*:*:*:*:*:*:*", "matchCriteriaId": "C366E672-CD77-4932-80D2-09A61B3B1A8E", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:4.14.3:*:*:*:*:*:*:*", "matchCriteriaId": "F7055FD2-C107-4D23-8B8C-28607C0C0ADA", "vulnerable": true}, {"criteria": "cpe:2.3:a:vanderbilt:redcap:4.14.4:*:*:*:*:*:*:*", "matchCriteriaId": "3242EC5F-0091-4097-9C6E-ADE5100017AF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in REDCap before 5.1.1 allow remote attackers to have an unknown impact via vectors involving (1) the Online Designer page or (2) the Manage Survey Participants page."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en REDCap anterior a v5.1.1 permite a atacantes remotos tener un impacto no determinado a trav\u00e9s de vectores que implican (1) la pagina de Online Designer o (2) la pagina de Manage Survey Participants."}], "id": "CVE-2013-4611", "lastModified": "2021-07-01T16:58:59.473", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-06-17T11:38:53.613", "references": [{"source": "cve@mitre.org", "url": "http://ctsi.psu.edu/wp-content/uploads/2013/03/REDCap-Release-Notes-Version5.pdf"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}