Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-8737
HistoryDec 09, 2014 - 11:59 p.m.

CVE-2014-8737

2014-12-0923:59:07
CWE-22
[email protected]
web.nvd.nist.gov
8

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.1

Confidence

High

EPSS

0

Percentile

10.1%

JSON

Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a … (dot dot) or full path name in an archive to (1) strip or (2) objcopy or create arbitrary files via (3) a … (dot dot) or full path name in an archive to ar.

Affected configurations

Nvd
Node
canonicalubuntu_linuxMatch10.04lts
OR
canonicalubuntu_linuxMatch12.04lts
OR
canonicalubuntu_linuxMatch14.04lts
OR
canonicalubuntu_linuxMatch14.10
Node
gnubinutilsRange2.24
Node
fedoraprojectfedoraMatch19
OR
fedoraprojectfedoraMatch20
OR
fedoraprojectfedoraMatch21
VendorProductVersionCPE
canonicalubuntu_linux10.04cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
canonicalubuntu_linux12.04cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
canonicalubuntu_linux14.10cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
gnubinutils*cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*
fedoraprojectfedora19cpe:2.3:o:fedoraproject:fedora:19:*:*:*:*:*:*:*
fedoraprojectfedora20cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
fedoraprojectfedora21cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*

References

Related

cvelist 1
cve 1
debiancve 1
veracode 1
ubuntucve 1
prion 1
fedora 9
nessus 26
openvas 20
centos 1
redhat 1
ibm 1
archlinux 4
gentoo 1
osv 2
securityvulns 2
debian 3
amazon 1
oraclelinux 1
mageia 1
ubuntu 1
photon 2
cvelist
cvelist
CVE-2014-8737
2014-12-09 22:52:00
cve
cve
CVE-2014-8737
2014-12-09 23:59:07
debiancve
debiancve
CVE-2014-8737
2014-12-09 23:59:07
veracode
veracode
Arbitrary File Write
2020-12-06 04:20:04
ubuntucve
ubuntucve
CVE-2014-8737
2014-12-09 00:00:00
prion
prion
Directory traversal
2014-12-09 23:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: binutils-2.24-30.fc21
2015-01-21 23:06:43
[SECURITY] Fedora 21 Update: mingw-binutils-2.25-1.fc21
2015-01-02 05:07:07
[SECURITY] Fedora 20 Update: mingw-binutils-2.24-5.fc20
2015-01-02 05:06:02
nessus
nessus
Fedora 21 : binutils-2.24-30.fc21 (2015-0750)
2015-01-22 00:00:00
Fedora 20 : cross-binutils-2.25-3.fc20 (2015-0471)
2015-01-22 00:00:00
Fedora 20 : mingw-binutils-2.24-5.fc20 (2014-17603)
2015-01-02 00:00:00
openvas
openvas
Fedora Update for binutils FEDORA-2015-0750
2015-01-22 00:00:00
Fedora Update for mingw-binutils FEDORA-2014-17603
2015-01-05 00:00:00
Fedora Update for mingw-binutils FEDORA-2014-17586
2015-01-05 00:00:00
centos
centos
binutils security update
2015-11-30 19:23:41
redhat
redhat
(RHSA-2015:2079) Moderate: binutils security, bug fix, and enhancement update
2015-11-19 14:38:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Gnu binutils affect PowerKVM
2018-06-18 01:30:35
archlinux
archlinux
avr-binutils: multiple issues
2014-11-19 00:00:00
mingw-w64-binutils: multiple issues
2014-11-19 00:00:00
binutils: multiple issues
2014-11-19 00:00:00
gentoo
gentoo
Binutils: Multiple vulnerabilities
2016-12-08 00:00:00
osv
osv
binutils - security update
2015-03-28 00:00:00
binutils - security update
2015-01-09 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3123-2] binutils-mingw-w64 security update
2015-01-14 00:00:00
GNU binutils multiple security vulnerabilities
2015-01-14 00:00:00
debian
debian
[SECURITY] [DLA 184-1] binutils security update
2015-03-28 18:38:23
[SECURITY] [DSA 3123-1] binutils security update
2015-01-09 20:52:35
[SECURITY] [DSA 3123-2] binutils-mingw-w64 security update
2015-01-13 18:48:50
amazon
amazon
Medium: binutils
2015-12-14 10:00:00
oraclelinux
oraclelinux
binutils security, bug fix, and enhancement update
2015-11-23 00:00:00
mageia
mageia
Updated binutils packages fix security vulnerabilities
2015-01-19 19:47:36
ubuntu
ubuntu
GNU binutils vulnerabilities
2015-02-09 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0414
2023-06-20 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0601
2023-06-20 00:00:00

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

AI Score

8.1

Confidence

High

EPSS

0

Percentile

10.1%

JSON
Related for NVD:CVE-2014-8737
cvelist1cve1debiancve1veracode1ubuntucve1prion1fedora9nessus26openvas20centos1redhat1ibm1archlinux4gentoo1osv2securityvulns2debian3amazon1oraclelinux1mageia1ubuntu1photon2