Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2014-2084
HistoryMay 17, 2014 - 7:55 p.m.

CVE-2014-2084

2014-05-1719:55:03
CWE-264
mitre
web.nvd.nist.gov
31
cve-2014-2084
skybox view appliances
iso
access restriction
remote attack
denial of service
sensitive information disclosure
nvd

CVSS2

8.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:N/A:C

AI Score

6.5

Confidence

Low

EPSS

0.112

Percentile

95.3%

JSON

Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain sensitive information via a request to (1) scripts/commands/getSystemInformation or (2) scripts/commands/getNetworkConfigurationInfo, cause a denial of service (reboot) via a request to scripts/commands/reboot, or cause a denial of service (shutdown) via a request to scripts/commands/shutdown.

Affected configurations

Nvd
Node
skyboxsecurityskybox_view_appliance_isoMatch6.3.31-2.14
OR
skyboxsecurityskybox_view_appliance_isoMatch6.3.33-2.14
OR
skyboxsecurityskybox_view_appliance_isoMatch6.4.42-2.54
OR
skyboxsecurityskybox_view_appliance_isoMatch6.4.45-2.56
OR
skyboxsecurityskybox_view_appliance_isoMatch6.4.46-2.57
AND
skyboxsecurityskybox_view_applianceMatch-
VendorProductVersionCPE
skyboxsecurityskybox_view_appliance_iso6.3.31-2.14cpe:2.3:a:skyboxsecurity:skybox_view_appliance_iso:6.3.31-2.14:*:*:*:*:*:*:*
skyboxsecurityskybox_view_appliance_iso6.3.33-2.14cpe:2.3:a:skyboxsecurity:skybox_view_appliance_iso:6.3.33-2.14:*:*:*:*:*:*:*
skyboxsecurityskybox_view_appliance_iso6.4.42-2.54cpe:2.3:a:skyboxsecurity:skybox_view_appliance_iso:6.4.42-2.54:*:*:*:*:*:*:*
skyboxsecurityskybox_view_appliance_iso6.4.45-2.56cpe:2.3:a:skyboxsecurity:skybox_view_appliance_iso:6.4.45-2.56:*:*:*:*:*:*:*
skyboxsecurityskybox_view_appliance_iso6.4.46-2.57cpe:2.3:a:skyboxsecurity:skybox_view_appliance_iso:6.4.46-2.57:*:*:*:*:*:*:*
skyboxsecurityskybox_view_appliance-cpe:2.3:h:skyboxsecurity:skybox_view_appliance:-:*:*:*:*:*:*:*

Related

zdt 2
exploitpack 1
openvas 1
prion 2
exploitdb 2
nvd 2
packetstorm 1
cvelist 1
cve 1
zdt
zdt
Skybox 6.x Authentication Bypass / Information Disclosure
2014-05-14 00:00:00
Skybox Security 6.3.x - 6.4.x - Multiple Information Disclosure
2014-05-12 00:00:00
exploitpack
exploitpack
Skybox Security 6.3.x 6.4.x - Multiple Information Disclosures
2014-05-12 00:00:00
openvas
openvas
Skybox Security Appliance Multiple Information Disclosure Vulnerabilities
2014-05-13 00:00:00
prion
prion
Design/Logic Flaw
2014-05-17 19:55:00
Design/Logic Flaw
2014-05-17 19:55:00
exploitdb
exploitdb
Skybox Security 6.3.x < 6.4.x - Multiple Information Disclosures
2014-05-12 00:00:00
Skybox Security 6.3.x < 6.4.x - Multiple Denial of Service Vulnerabilities
2014-05-12 00:00:00
nvd
nvd
CVE-2014-2084
2014-05-17 19:55:03
CVE-2014-2085
2014-05-17 19:55:03
packetstorm
packetstorm
Skybox 6.x Authentication Bypass / Information Disclosure
2014-05-12 00:00:00
cvelist
cvelist
CVE-2014-2084
2014-05-17 19:00:00
cve
cve
CVE-2014-2085
2014-05-17 19:55:03

CVSS2

8.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:N/A:C

AI Score

6.5

Confidence

Low

EPSS

0.112

Percentile

95.3%

JSON
Related for CVE-2014-2084
zdt2exploitpack1openvas1prion2exploitdb2nvd2packetstorm1cvelist1cve1