Lucene search
HistoryDec 18, 2014 - 3:59 p.m.
CVE-2014-8120
cve-2014-8120
thermostat
agent
local users
jmx management urls
privileges
nvd
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The agent in Thermostat before 1.0.6, when using unspecified configurations, allows local users to obtain the JMX management URLs of all local Java virtual machines and gain privileges via unknown vectors.
Affected configurations
Node
thermostat_projectthermostatRange≤1.0.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| thermostat_project:thermostat | thermostat project thermostat | le | 1.0.4 |
Related
redhat
redhat
(RHSA-2014:2000) Important: thermostat1-thermostat security update
2014-12-16 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: thermostat-1.0.6-1.fc20
2015-01-08 07:02:09
[SECURITY] Fedora 21 Update: thermostat-1.0.6-1.fc21
2015-01-08 07:01:52
[SECURITY] Fedora 21 Update: thermostat-1.0.6-2.fc21
2015-06-10 19:07:44
cvelist
cvelist
CVE-2014-8120
2014-12-18 15:00:00
openvas
openvas
Fedora Update for thermostat FEDORA-2014-17415
2015-01-09 00:00:00
Fedora Update for thermostat FEDORA-2014-17384
2015-01-09 00:00:00
Fedora Update for thermostat FEDORA-2015-8919
2015-06-11 00:00:00
nessus
nessus
Fedora 20 : thermostat-1.0.6-1.fc20 (2014-17415)
2015-01-09 00:00:00
Fedora 21 : thermostat-1.0.6-1.fc21 (2014-17384)
2015-01-09 00:00:00
prion
prion
Design/Logic Flaw
2014-12-18 15:59:00
nvd
nvd
CVE-2014-8120
2014-12-18 15:59:02
4.4 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2014-8120