Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-0359
HistoryApr 15, 2014 - 10:55 a.m.

CVE-2014-0359

2014-04-1510:55:12
CWE-78
[email protected]
web.nvd.nist.gov
4

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.002

Percentile

53.0%

JSON

Xangati XSR before 11 and XNR before 7 allows remote attackers to execute arbitrary commands via shell metacharacters in a gui_input_test.pl params parameter to servlet/Installer.

Affected configurations

Nvd
Node
xangatixangati_software_releaseMatch-
OR
xangatixangati_xnrMatch-
VendorProductVersionCPE
xangatixangati_software_release-cpe:2.3:a:xangati:xangati_software_release:-:*:*:*:*:*:*:*
xangatixangati_xnr-cpe:2.3:a:xangati:xangati_xnr:-:*:*:*:*:*:*:*

Related

prion 1
ibm 1
cve 1
cvelist 1
cert 1
prion
prion
Design/Logic Flaw
2014-04-15 10:55:00
ibm
ibm
Security Bulletin: IBM TRIRIGA Application Platform discloses remote attacker to execute commands (CVE-2014-0359)
2023-07-28 19:59:31
cve
cve
CVE-2014-0359
2014-04-15 10:55:12
cvelist
cvelist
CVE-2014-0359
2014-04-15 10:00:00
cert
cert
Xangati software release contains relative path traversal and command injection vulnerabilities
2014-04-14 00:00:00

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.002

Percentile

53.0%

JSON
Related for NVD:CVE-2014-0359
prion1ibm1cve1cvelist1cert1