Lucene search

[email protected]NVD:CVE-2014-2505

HistoryAug 20, 2014 - 11:17 a.m.

CVE-2014-2505

2014-08-2011:17:13

[email protected]

web.nvd.nist.gov

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.006

Percentile

78.9%

JSON

EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to trigger the download of arbitrary code, and consequently change the product’s functionality, via unspecified vectors.

Affected configurations

Nvd

Node

emcrsa_archer_egrcMatch5.3

emcrsa_archer_egrcMatch5.4

emcrsa_archer_egrcMatch5.4sp1

emcrsa_archer_egrcMatch5.5

VendorProductVersionCPE
emcrsa_archer_egrc5.3cpe:2.3:a:emc:rsa_archer_egrc:5.3:*:*:*:*:*:*:*
emcrsa_archer_egrc5.4cpe:2.3:a:emc:rsa_archer_egrc:5.4:*:*:*:*:*:*:*
emcrsa_archer_egrc5.4cpe:2.3:a:emc:rsa_archer_egrc:5.4:sp1:*:*:*:*:*:*
emcrsa_archer_egrc5.5cpe:2.3:a:emc:rsa_archer_egrc:5.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
emc	rsa_archer_egrc	5.3	cpe:2.3:a:emc:rsa_archer_egrc:5.3:::::::*
emc	rsa_archer_egrc	5.4	cpe:2.3:a:emc:rsa_archer_egrc:5.4:::::::*
emc	rsa_archer_egrc	5.4	cpe:2.3:a:emc:rsa_archer_egrc:5.4:sp1::::::
emc	rsa_archer_egrc	5.5	cpe:2.3:a:emc:rsa_archer_egrc:5.5:::::::*

References

archives.neohapsis.com/archives/bugtraq/2014-08/0097.html

www.securityfocus.com/bid/69290

www.securitytracker.com/id/1030738

exchange.xforce.ibmcloud.com/vulnerabilities/95360

CVSS2

5.4

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.006

Percentile

78.9%

JSON

Related for NVD:CVE-2014-2505

prion1 cve1 cvelist1 securityvulns2