[email protected]CVE-2014-8582

HistoryNov 01, 2014 - 11:55 p.m.

CVE-2014-8582

2014-11-0123:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2014-8582

fortinet

fortiadc-e

coyote point equalizer

firmware vulnerability

remote access

subnet access

7.7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

72.1%

JSON

FortiNet FortiADC-E with firmware 3.1.1 before 4.0.5 and Coyote Point Equalizer with firmware 10.2.0a allows remote attackers to obtain access to arbitrary subnets via unspecified vectors.

CPENameOperatorVersion
fortinet:coyote_point_equalizer_firmwarefortinet coyote point equalizer firmwareeq10.2.0a
fortinet:coyote_point_equalizerfortinet coyote point equalizereq-
fortinet:fortiadc_firmwarefortinet fortiadc firmwareeq3.1.1
fortinet:fortiadc_firmwarefortinet fortiadc firmwareeq3.2.0
fortinet:fortiadc_firmwarefortinet fortiadc firmwareeq3.2.1
fortinet:fortiadc_firmwarefortinet fortiadc firmwareeq4.0.4
fortinet:fortiadc-1000efortinet fortiadc-1000eeq-
fortinet:fortiadc-300efortinet fortiadc-300eeq-
fortinet:fortiadc-400efortinet fortiadc-400eeq-
fortinet:fortiadc-600efortinet fortiadc-600eeq-

CPE	Name	Operator	Version
fortinet:coyote_point_equalizer_firmware	fortinet coyote point equalizer firmware	eq	10.2.0a
fortinet:coyote_point_equalizer	fortinet coyote point equalizer	eq	-
fortinet:fortiadc_firmware	fortinet fortiadc firmware	eq	3.1.1
fortinet:fortiadc_firmware	fortinet fortiadc firmware	eq	3.2.0
fortinet:fortiadc_firmware	fortinet fortiadc firmware	eq	3.2.1
fortinet:fortiadc_firmware	fortinet fortiadc firmware	eq	4.0.4
fortinet:fortiadc-1000e	fortinet fortiadc-1000e	eq	-
fortinet:fortiadc-300e	fortinet fortiadc-300e	eq	-
fortinet:fortiadc-400e	fortinet fortiadc-400e	eq	-
fortinet:fortiadc-600e	fortinet fortiadc-600e	eq	-

References

docs.fortinet.com/uploaded/files/2164/FortiADC-E-4.0.5-GA-Release-Notes.pdf

secunia.com/advisories/61866

www.fortiguard.com/advisory/FG-IR-14-032/

exchange.xforce.ibmcloud.com/vulnerabilities/98384

7.7 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

72.1%

JSON

Related for CVE-2014-8582

cvelist1 prion1