CVE-2013-4733
7.5 HIGHThe web server on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-...
Published: 2013-06-30 · Last updated: 2026-06-02
Severity and scoring
- CVSS
- 7.5 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-264, CWE-532
Affected products
| Vendor | Product |
|---|---|
| digital_alert_systems | dasdec_eas, r189_one-net_eas |
| monroe_electronics | dasdec_eas, r189_one-net_eas |
Description
The web server on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 allows remote attackers to obtain sensitive configuration and status information by reading log files.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2013-4733
- [Vendor advisory]http://www.digitalalertsystems.com/pdf/130604-Monroe-Security-PR.pdf
- [Other]http://www.kb.cert.org/vuls/id/662676
- [Other]http://www.kb.cert.org/vuls/id/AAMN-98MU7H
- [Other]http://www.kb.cert.org/vuls/id/AAMN-98MUK2
- [Vendor advisory]http://www.monroe-electronics.com/MONROE_ELECTRONICS_PDF/130604-Monroe-Security-PR.pdf
- [Vendor advisory]http://www.digitalalertsystems.com/pdf/130604-Monroe-Security-PR.pdf
- [Other]http://www.kb.cert.org/vuls/id/662676
- [Other]http://www.kb.cert.org/vuls/id/AAMN-98MU7H
- [Other]http://www.kb.cert.org/vuls/id/AAMN-98MUK2
- [Vendor advisory]http://www.monroe-electronics.com/MONROE_ELECTRONICS_PDF/130604-Monroe-Security-PR.pdf
Related CVEs
Same vendor
- CVE-2013-4734 — dasdec_mkuser on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2... (7.3 HIGH)
Same CWE
- CVE-2025-46313 — A logging issue was addressed with improved data redaction (5.5 MEDIUM)
- CVE-2026-0267 — An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured p...
- CVE-2026-9751 — The ldapQueryPassword parameter, when set through the runtime setParameter command, will log the new password to the mongod.log file in p... (5.5 MEDIUM)
- CVE-2026-9735 — MongoDB server may log authentication parameters, including credentials, to the server log during SASL authentication (5.5 MEDIUM)
- CVE-2026-41974 — Permission control vulnerability in service notifications (3.6 LOW)