Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-8474
HistoryNov 04, 2014 - 8:55 p.m.

CVE-2014-8474

2014-11-0420:55:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
15
ca cloud service management
csm
summer 2014
xml external entity
xxe
cve-2014-8474
nvd
security vulnerability

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

80.9%

JSON

CA Cloud Service Management (CSM) before Summer 2014 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

Related

prion 1
securityvulns 2
prion
prion
Xxe
2014-11-04 20:55:00
securityvulns
securityvulns
CA Cloud Service Management multiple security vulnerabilities
2014-11-10 00:00:00
CA20141103-01: Security Notice for CA Cloud Service Management
2014-11-10 00:00:00

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

80.9%

JSON
Related for CVE-2014-8474
prion1securityvulns2