Lucene search

[email protected]CVE-2014-2210

HistoryApr 04, 2014 - 3:10 p.m.

CVE-2014-2210

2014-04-0415:10:00

CWE-22

[email protected]

web.nvd.nist.gov

cve-2014-2210

ca erwin web portal

directory traversal

remote attackers

sensitive information

access restrictions

denial of service

arbitrary code

nvd

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.928 High

EPSS

Percentile

99.0%

JSON

Multiple directory traversal vulnerabilities in CA ERwin Web Portal 9.5 allow remote attackers to obtain sensitive information, bypass intended access restrictions, cause a denial of service, or possibly execute arbitrary code via unspecified vectors.

CPENameOperatorVersion
ca:erwin_web_portalca erwin web portaleq9.5

CPE	Name	Operator	Version
ca:erwin_web_portal	ca erwin web portal	eq	9.5

References

www.securityfocus.com/bid/66644

www.securitytracker.com/id/1030017

support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B7F968A14-7407-4BCF-9EB1-EFE9F0E6D663%7D

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.928 High

EPSS

Percentile

99.0%

JSON

Related for CVE-2014-2210

prion1 securityvulns2 zdi5 checkpoint_advisories3 seebug1 nessus1