High severity7.5NVD Advisory· Published Mar 14, 2017· Updated May 13, 2026

CVE-2013-7462

Description

A directory traversal vulnerability in the web application in McAfee (now Intel Security) SaaS Control Console (SCC) Platform 6.14 before patch 1070, and 6.15 before patch 1076 allows unauthenticated users to view contents of arbitrary system files that did not have file system level read access restrictions via a null-byte injection exploit.

Affected products

McAfee/Saas Control Console Platform
cpe:2.3:a:mcafee:saas_control_console_platform:*:*:*:*:*:*:*:*
Range: <=6.15
Intel/SaaS Control Console (SCC) Platformv5
Range: 6.14 before patch 1070, and 6.15 before patch 1076

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000