CVE-2014-2352CVE-2014-2352

Affected configuration(s):

cpe:/a:cogentdatahub:cogent_datahub:7.0
cpe:/a:cogentdatahub:cogent_datahub:7.0.2
cpe:/a:cogentdatahub:cogent_datahub:7.1.0
cpe:/a:cogentdatahub:cogent_datahub:7.1.1
cpe:/a:cogentdatahub:cogent_datahub:7.1.1.63
cpe:/a:cogentdatahub:cogent_datahub:7.1.2
cpe:/a:cogentdatahub:cogent_datahub:7.2.2
cpe:/a:cogentdatahub:cogent_datahub:7.3.0
cpe:/a:cogentdatahub:cogent_datahub:7.3.1
cpe:/a:cogentdatahub:cogent_datahub:7.3.2
cpe:/a:cogentdatahub:cogent_datahub:7.3.3
cpe:/a:cogentdatahub:cogent_datahub:7.3.4

Date published: 2014-05-30T19:55:02.847-04:00

Date last modified: 2014-06-05T08:49:11.810-04:00

CVSS Score: 6.4

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://ics-cert.us-cert.gov/advisories/ICSA-14-149-02

Summary: Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to read arbitrary files of unspecified types, or cause a web-server denial of service, via a crafted pathname.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *