Medium severity6.5NVD Advisory· Published Jan 28, 2020· Updated Jun 16, 2026
CVE-2013-4861
CVE-2013-4861
Description
Directory traversal vulnerability in cgi-bin/cmh/get_file.sh in MiCasaVerde VeraLite with firmware 1.5.408 allows remote authenticated users to read arbirary files via a .. (dot dot) in the filename parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MiCasaVerde/VeraLitedescription
- Range: 1.5.408
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/122654/MiCasaVerde-VeraLite-1.5.408-Traversal-Authorization-CSRF-Disclosure.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/27286nvdExploitThird Party AdvisoryVDB Entry
- www3.trustwave.com/spiderlabs/advisories/TWSL2013-019.txtnvdExploit
News mentions
0No linked articles in our index yet.