CVE-2013-3564

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2013-3564

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-3564.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2013-3564

Downstream

DEBIAN-CVE-2013-3564

UBUNTU-CVE-2013-3564

Published

2020-02-06T22:15:10Z

Modified

2026-04-10T03:42:53.083654Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

The web interface in VideoLAN VLC media player before 2.0.7 has no access control which allows remote attackers to view directory listings via the 'dir' command or issue other commands without authenticating.

References

https://www3.trustwave.com/spiderlabs/advisories/TWSL2013-007.txt

Affected packages