High severity8.8NVD Advisory· Published Jan 28, 2020· Updated Jun 16, 2026
CVE-2013-4863
CVE-2013-4863
Description
The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote attackers to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a RunLua action in a request to port_49451/upnp/control/hag.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MiCasaVerde/VeraLitedescription
- Range: 1.5.408
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/122654/MiCasaVerde-VeraLite-1.5.408-Traversal-Authorization-CSRF-Disclosure.htmlnvdExploitThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/27286nvdExploitThird Party AdvisoryVDB Entry
- www3.trustwave.com/spiderlabs/advisories/TWSL2013-019.txtnvdExploit
News mentions
0No linked articles in our index yet.