CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2959

logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.1%

CVSS Severity

CVSS v2 Score 9.0

References

Products affected by CVE-2014-2959

Dell » Powervault Ml6000 » Version: 32u

cpe:2.3:h:dell:powervault_ml6000:32u
Dell » Powervault Ml6000 » Version: 41u

cpe:2.3:h:dell:powervault_ml6000:41u
Quantum » Scalar I500 » Version: 14u

cpe:2.3:h:quantum:scalar_i500:14u
Quantum » Scalar I500 » Version: 23u

cpe:2.3:h:quantum:scalar_i500:23u
Quantum » Scalar I500 » Version: 5u

cpe:2.3:h:quantum:scalar_i500:5u
Dell » Powervault Ml6000 Firmware » Version: i8.2.0.1_(641g.gs003)

cpe:2.3:o:dell:powervault_ml6000_firmware:i8.2.0.1_(641g.gs003)
Quantum » Scalar I500 Firmware » Version: i8.2.2.1_(646g.gs002)

cpe:2.3:o:quantum:scalar_i500_firmware:i8.2.2.1_(646g.gs002)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-2959

Products

Pricing

Contact Us