CVE-2013-3594 — HIGH (10.0)

Vulnerability Description

The SSH service on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote attackers to cause a denial of service (device reset) or possibly execute arbitrary code by sending many packets to TCP port 22.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Dell	Powerconnect 3348	1.2.1.3
Dell	Powerconnect 3524P	2.0.0.48
Dell	Powerconnect 5324	2.0.1.4

Related Weaknesses (CWE)

CWE-20

References

http://www.kb.cert.org/vuls/id/122582Third Party AdvisoryUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/90595
http://www.kb.cert.org/vuls/id/122582Third Party AdvisoryUS Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/90595

FAQ

What is CVE-2013-3594?

CVE-2013-3594 is a vulnerability with a CVSS score of 10.0 (HIGH). The SSH service on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote attackers to cause a denial of service (device reset) or possibly execute arbitrary code by s...

How severe is CVE-2013-3594?

CVE-2013-3594 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-3594?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Powerconnect 3348, Dell Powerconnect 3524P, Dell Powerconnect 5324.