Lucene search

K
nvd[email protected]NVD:CVE-2018-14809
HistorySep 26, 2018 - 8:29 p.m.

CVE-2018-14809

2018-09-2620:29:00
CWE-416
web.nvd.nist.gov
5
fuji electric
v-server
vulnerability
use after free
remote code execution

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

10

Confidence

High

EPSS

0.02

Percentile

89.0%

Fuji Electric V-Server 4.0.3.0 and prior, A use after free vulnerability has been identified, which may allow remote code execution.

Affected configurations

Nvd
Node
fujielectricv-server_firmwareRange4.0.3.0
AND
fujielectricv-serverMatch-
VendorProductVersionCPE
fujielectricv-server_firmware*cpe:2.3:o:fujielectric:v-server_firmware:*:*:*:*:*:*:*:*
fujielectricv-server-cpe:2.3:h:fujielectric:v-server:-:*:*:*:*:*:*:*

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

10

Confidence

High

EPSS

0.02

Percentile

89.0%

Related for NVD:CVE-2018-14809