2 matches found
EMC CMCNE FileUploadController Information Disclosure (CVE-2014-2276)
An information disclosure vulnerability has been reported in EMC Connectrix Manager Converged Network Edition. The vulnerability is due to insufficient input validation in the FileUploadController servlet when processing certain HTTP requests. A remote unauthenticated attacker can exploit this...
CVE-2014-2276
EMC Connectrix Manager Converged Network Edition (CMCNE) affected before 12.1.5. The FileUploadController servlet fails input validation, enabling an unauthenticated remote attacker to disclose arbitrary files by importing a crafted firmware file (information disclosure). Some sources describe un...