Lucene search
HistoryJul 07, 2014 - 11:01 a.m.
CVE-2014-0602
cve-2014-0602
directory traversal
netiq security manager
activex control
remote code execution
vulnerability
7.8 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.274 Low
EPSS
Percentile
96.8%
Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in NetIQ Security Manager through 6.5.4 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-3460.
Affected configurations
Node
microfocussecurity_managerRange≤6.5.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| microfocus:security_manager | microfocus security manager | le | 6.5.4 |
Related
cvelist
cvelist
CVE-2014-0602
2014-07-07 10:00:00
CVE-2014-3460
2014-05-20 10:00:00
nvd
nvd
CVE-2014-0602
2014-07-07 11:01:28
CVE-2014-3460
2014-05-20 11:13:38
prion
prion
Directory traversal
2014-07-07 11:01:00
Directory traversal
2014-05-20 11:13:00
zdi
zdi
cve
cve
CVE-2014-3460
2014-05-20 11:13:38
nessus
nessus
7.8 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.274 Low
EPSS
Percentile
96.8%
Related for CVE-2014-0602