Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-8357
HistoryOct 17, 2017 - 4:00 p.m.

CVE-2014-8357

2017-10-1716:00:00
mitre
www.cve.org
2

AI Score

8.7

Confidence

High

EPSS

0.013

Percentile

86.1%

JSON

backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf.

Related

prion 1
nvd 1
attackerkb 1
cve 1
packetstorm 1
exploitpack 1
openvas 1
securityvulns 1
exploitdb 1
prion
prion
Design/Logic Flaw
2017-10-17 16:29:00
nvd
nvd
CVE-2014-8357
2017-10-17 16:29:00
attackerkb
attackerkb
CVE-2014-8357
2017-10-17 00:00:00
cve
cve
CVE-2014-8357
2017-10-17 16:29:00
packetstorm
packetstorm
Zhone Insecure Reference / Password Disclosure / Command Injection
2015-10-12 00:00:00
exploitpack
exploitpack
ZHONE S3.0.501 - Multiple Vulnerabilities
2015-10-13 00:00:00
openvas
openvas
ZHONE ZNID GPON < 3.1.241 Multiple Vulnerabilities
2015-10-15 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities found in ZHONE
2015-10-25 00:00:00
exploitdb
exploitdb
ZHONE &lt; S3.0.501 - Multiple Vulnerabilities
2015-10-13 00:00:00

AI Score

8.7

Confidence

High

EPSS

0.013

Percentile

86.1%

JSON
Related for CVELIST:CVE-2014-8357
prion1nvd1attackerkb1cve1packetstorm1exploitpack1openvas1securityvulns1exploitdb1