CVE Database · CVE-2013-5135
CVSS v3.1
N/A
EPSS
10.83%
Published
Oct 24, 2013
Modified
Apr 28, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username.
Weaknesses (CWE)
Affected Products (20)
References (6)
