Vulnerability Details CVE-2014-4982
LPAR2RRD ≤ 4.53 and ≤ 3.5 has arbitrary command injection on the application server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 87.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://packetstormsecurity.com/files/127593/LPAR2RRD-3.5-4.53-Command-Injection.html
- http://www.openwall.com/lists/oss-security/2014/07/23/6
- http://www.securityfocus.com/bid/68850
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94785
- http://packetstormsecurity.com/files/127593/LPAR2RRD-3.5-4.53-Command-Injection.html
- http://www.openwall.com/lists/oss-security/2014/07/23/6
- http://www.securityfocus.com/bid/68850
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94785
Products affected by CVE-2014-4982
-
cpe:2.3:a:xorux:lpar2rrd:-
-
cpe:2.3:a:xorux:lpar2rrd:2.7.0
-
cpe:2.3:a:xorux:lpar2rrd:3.02
-
cpe:2.3:a:xorux:lpar2rrd:3.10
-
cpe:2.3:a:xorux:lpar2rrd:3.11
-
cpe:2.3:a:xorux:lpar2rrd:3.14
-
cpe:2.3:a:xorux:lpar2rrd:3.15
-
cpe:2.3:a:xorux:lpar2rrd:3.20
-
cpe:2.3:a:xorux:lpar2rrd:3.21
-
cpe:2.3:a:xorux:lpar2rrd:3.30
-
cpe:2.3:a:xorux:lpar2rrd:3.40
-
cpe:2.3:a:xorux:lpar2rrd:3.50
-
cpe:2.3:a:xorux:lpar2rrd:4.00
-
cpe:2.3:a:xorux:lpar2rrd:4.50
-
cpe:2.3:a:xorux:lpar2rrd:4.53