Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveJpcertCVE-2014-1987
HistoryJul 20, 2014 - 11:12 a.m.

CVE-2014-1987

2014-07-2011:12:49
CWE-78
jpcert
web.nvd.nist.gov
34
cybozu
garoon
remote code execution
cve-2014-1987
nvd

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.006

Percentile

77.9%

JSON

The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute arbitrary commands via unspecified vectors.

Affected configurations

Nvd
Node
cybozugaroonMatch3.1.0
OR
cybozugaroonMatch3.1.1
OR
cybozugaroonMatch3.1.2
OR
cybozugaroonMatch3.1.3
OR
cybozugaroonMatch3.5.0
OR
cybozugaroonMatch3.5.1
OR
cybozugaroonMatch3.5.2
OR
cybozugaroonMatch3.5.3
OR
cybozugaroonMatch3.5.4
OR
cybozugaroonMatch3.5.5
OR
cybozugaroonMatch3.7sp1
OR
cybozugaroonMatch3.7sp2
OR
cybozugaroonMatch3.7sp3
VendorProductVersionCPE
cybozugaroon3.1.0cpe:2.3:a:cybozu:garoon:3.1.0:*:*:*:*:*:*:*
cybozugaroon3.1.1cpe:2.3:a:cybozu:garoon:3.1.1:*:*:*:*:*:*:*
cybozugaroon3.1.2cpe:2.3:a:cybozu:garoon:3.1.2:*:*:*:*:*:*:*
cybozugaroon3.1.3cpe:2.3:a:cybozu:garoon:3.1.3:*:*:*:*:*:*:*
cybozugaroon3.5.0cpe:2.3:a:cybozu:garoon:3.5.0:*:*:*:*:*:*:*
cybozugaroon3.5.1cpe:2.3:a:cybozu:garoon:3.5.1:*:*:*:*:*:*:*
cybozugaroon3.5.2cpe:2.3:a:cybozu:garoon:3.5.2:*:*:*:*:*:*:*
cybozugaroon3.5.3cpe:2.3:a:cybozu:garoon:3.5.3:*:*:*:*:*:*:*
cybozugaroon3.5.4cpe:2.3:a:cybozu:garoon:3.5.4:*:*:*:*:*:*:*
cybozugaroon3.5.5cpe:2.3:a:cybozu:garoon:3.5.5:*:*:*:*:*:*:*
Rows per page:
1-10 of 131

Related

prion 1
cvelist 1
jvn 1
nvd 1
prion
prion
Design/Logic Flaw
2014-07-20 11:12:00
cvelist
cvelist
CVE-2014-1987
2014-07-20 10:00:00
jvn
jvn
JVN#42024228: Cybozu Garoon CGI vulnerable to remote command execution
2014-07-15 00:00:00
nvd
nvd
CVE-2014-1987
2014-07-20 11:12:49

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.006

Percentile

77.9%

JSON
Related for CVE-2014-1987
prion1cvelist1jvn1nvd1