CVE-2014-2276 in Connectrix Managerinformation

Résumé (Anglaise)

The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtain sensitive information by importing a crafted firmware file.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

04/03/2014

Divulgation

21/03/2014

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
66745EMC Connectrix Manager Firmware élévation de privilèges264Non définiCorrectif officielCVE-2014-2276

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!