CVE-2013-6030

Emerson Network Power Avocent MergePoint Unity 2016 Firmware 1.9.16473 - Path Traversal

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability on the Emerson Network Power Avocent MergePoint Unity 2016 (aka MPU2016) KVM switch with firmware 1.9.16473 allows remote attackers to read arbitrary files via unspecified vectors, as demonstrated by reading the /etc/passwd file.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/65105
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/168751

Scores

EPSS 0.0294
EPSS Percentile 85.4%

Details

CWE
CWE-22
Status published
Products (1)
emerson/network_power_avocent_mergepoint_unity_2016_firmware 1.9.16473 (2 CPE variants)
Published Jan 24, 2014
Tracked Since Feb 18, 2026