VYPR
High severity8.8NVD Advisory· Published Feb 21, 2018· Updated Jun 16, 2026

CVE-2013-0267

CVE-2013-0267

Description

The Privileges portion of the web GUI and the XMLRPC API in Apache VCL 2.3.x before 2.3.2, 2.2.x before 2.2.2 and 2.1 allow remote authenticated users with nodeAdmin, manageGroup, resourceGrant, or userGrant permissions to gain privileges, cause a denial of service, or conduct cross-site scripting (XSS) attacks by leveraging improper data validation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Apache/Vclinferred2 versions
    =2.1+ 1 more
    • (no CPE)range: =2.1
    • (no CPE)range: <2.3.2, <2.2.2, <2.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.