Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-3852

Malware in sbrugna...

10CVSS6.4AI score0.04613EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEVadded 2020/12/01 12:0 a.m.0 views

VulnCheck KEV: CVE-2014-3914

Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager TSM in Rocket ServerGraph 1.2 allows remote attackers to 1 create arbitrary files via a .. dot dot in the query parameter in a writeDataFile action to the fileRequestor servlet, execute arbitrary files via a...

10CVSS6AI score0.83656EPSS
Exploits5References1
Check Point Advisories
Check Point Advisoriesadded 2014/12/28 12:0 a.m.5 views

Rocket Servergraph Admin Center fileRequestor Directory Traversal - Ver2 (CVE-2014-3914)

A code execution vulnerability exists in Rocket Servergraph Admin Center. The vulnerability occurs when making an HTTP POST request to the URI /SGPAdmin/fileRequest with the parameters cmd=writeDataFile, cmd=run, cmd=runClear or cmd=del, which can be present in the Body of the request. A remote...

10CVSS2.6AI score0.83656EPSS
Exploits5
Prion
Prionadded 2014/08/07 11:13 a.m.20 views

Directory traversal

Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager TSM in Rocket ServerGraph 1.2 allows remote attackers to 1 create arbitrary files via a .. dot dot in the query parameter in a writeDataFile action to the fileRequestor servlet, execute arbitrary files via a .. dot d...

10CVSS7.9AI score0.83656EPSS
Exploits5References6Affected Software1
CVE
CVEadded 2014/08/07 10:0 a.m.64 views

CVE-2014-3914

CVE-2014-3914 affects Rocket Servergraph 1.2 Admin Center, with directory traversal in the fileRequestor servlet (and related fileRequestServlet/userRequest servlet) allowing actions such as writeDataFile, run, runClear, readDataFile, del, and save_server_groups to be abused via crafted query/bod...

10CVSS7.5AI score0.83656EPSS
Exploits5References6Affected Software1
Check Point Advisories
Check Point Advisoriesadded 2014/08/03 12:0 a.m.5 views

Rocket Servergraph Admin Center fileRequestor Directory Traversal (CVE-2014-3914)

A code execution vulnerability exists in Rocket Servergraph Admin Center. The vulnerability occurs when making an HTTP POST request to the URI /SGPAdmin/fileRequest with the parameters cmd=writeDataFile, cmd=run, cmd=runClear or cmd=del, which can be present in the Body of the request. A remote...

2.6AI score0.83656EPSS
Exploits5
Check Point Advisories
Check Point Advisoriesadded 2014/07/14 12:0 a.m.2 views

Rocket Servergraph Admin Center userRequest and tsmRequest Command Execution (CVE-2014-3915)

Multiple vulnerabilities exist in Rocket Servergraph, an interface for monitoring backup solutions such as IBM Tivoli Storage Manager, Symantec NetBackup etc. These vulnerabilities are due to input validation errors when handling requests to the URIs userRequest and tsmRequest. A remote...

10CVSS2.6AI score0.04613EPSS
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.19 views

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::HttpClient include...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2014/06/18 12:0 a.m.33 views

Rocket Servergraph Admin Center - fileRequestor Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Rocket Servergraph Admin Center fileRequestor Remote Code Execution', 'Description' = %q This module abuses several directory travers...

10CVSS7AI score0.83656EPSS
Exploits5
0day.today
0day.todayadded 2014/06/18 12:0 a.m.30 views

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

Exploit for multiple platform in category remote exploits This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Rocket Servergraph Admin Center fileRequestor Remote Code Execution',...

10CVSS0.4AI score0.83656EPSS
Exploits5
Packet Storm
Packet Stormadded 2014/06/17 12:0 a.m.34 views

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Rocket Servergraph Admin Center fileRequestor Remote Code Execution', 'Description' = %q This module abuses several directory travers...

10CVSS0.5AI score0.83656EPSS
Exploits5
NVD
NVDadded 2014/06/11 2:55 p.m.10 views

CVE-2014-3915

The userRequest servlet in the Admin Center for Tivoli Storage Manager in Rocket Servergraph allows remote attackers to execute arbitrary commands via a 1 auth, 2 authsession, 3 authsimple, 4 add, 5 addflat, 6 remove, 7 setpwd, 8 addpermissions, 9 revokepermissions, 10 runAsync, or 11 tsmRequest...

10CVSS7.5AI score0.04613EPSS
Exploits0References2
Cvelist
Cvelistadded 2014/06/11 2:0 p.m.16 views

CVE-2014-3915

The userRequest servlet in the Admin Center for Tivoli Storage Manager in Rocket Servergraph allows remote attackers to execute arbitrary commands via a 1 auth, 2 authsession, 3 authsimple, 4 add, 5 addflat, 6 remove, 7 setpwd, 8 addpermissions, 9 revokepermissions, 10 runAsync, or 11 tsmRequest...

7.5AI score0.04613EPSS
Exploits0References2
CVE
CVEadded 2014/06/11 2:0 p.m.40 views

CVE-2014-3915

The CVE-2014-3915 issue affects Rocket Servergraph’s Admin Center, specifically the userRequest servlet. Multiple command vectors (auth, auth_session, auth_simple, add, add_flat, remove, set_pwd, add_permissions, revoke_permissions, runAsync, tsmRequest) allow remote attackers to execute arbitrar...

10CVSS7.8AI score0.04613EPSS
Exploits0References2Affected Software1
Metasploit
Metasploitadded 2014/06/08 4:7 p.m.19 views

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

This module abuses several directory traversal flaws in Rocket Servergraph Admin Center for Tivoli Storage Manager. The issues exist in the fileRequestor servlet, allowing a remote attacker to write arbitrary files and execute commands with administrative privileges. This module has been tested...

10CVSS0.2AI score0.83656EPSS
Exploits5
Zero Day Initiative
Zero Day Initiativeadded 2014/06/02 12:0 a.m.43 views

(0Day) Rocket Servergraph Admin Center for TSM fileRequestServlet writeDataFile Command Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Rocket Servergraph Admin Center for Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the fileRequestServlet servlet. This servle...

10CVSS7.2AI score0.83656EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiativeadded 2014/06/02 12:0 a.m.22 views

(0Day) Rocket Servergraph Admin Center for TSM userRequest save_server_groups Command Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Rocket Servergraph Admin Center for Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the userRequest servlet. This servlet is...

10CVSS7.2AI score0.83656EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiativeadded 2014/06/02 12:0 a.m.21 views

(0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet del Command Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Rocket Servergraph Admin Center for Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the fileRequestServlet servlet. This servle...

7.8CVSS6.2AI score0.83656EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiativeadded 2014/06/02 12:0 a.m.21 views

(0Day) Rocket Servergraph Admin Center for TSM fileRequestorServlet readDataFile Command Information Disclosure Vulnerability

This vulnerability allows remote attackers to obtain sensitive information on vulnerable installations of Rocket Servergraph Admin Center for Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the fileRequestServlet servlet. This...

7.8CVSS6.5AI score0.83656EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiativeadded 2014/06/02 12:0 a.m.28 views

(0Day) Rocket Servergraph Admin Center for TSM userRequest/tsmRequest Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Rocket Servergraph Admin Center for Tivoli Storage Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the userRequest servlet. It is possible to...

10CVSS7.4AI score0.04613EPSS
Exploits0References1
Rows per page
Query Builder