Lucene search

PRIOn knowledge basePRION:CVE-2014-2232

HistoryDec 01, 2014 - 3:59 p.m.

Path traversal

2014-12-0115:59:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.6%

JSON

Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to read arbitrary files via unspecified vectors.

CPENameOperatorVersion
mapsuitege1.0
mapsuitelt1.0.36
mapsuitege1.1
mapsuitelt1.1.49

Name	Operator	Version
mapsuite	ge	1.0
mapsuite	lt	1.0.36
mapsuite	ge	1.1
mapsuite	lt	1.1.49

References

iw.mapandroute.de/MapAPI-1.0/releaseHistory.jsp

iw.mapandroute.de/MapAPI-1.1/releaseHistory.jsp

www.christian-schneider.net/advisories/CVE-2014-2232.txt

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.6%

JSON

Related for PRION:CVE-2014-2232