CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-5068

Directory traversal vulnerability in the web application in Symmetricom s350i 2.70.15 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash) or (2) ..\ (dot dot forward slash) before a file name.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-5068/
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-5068/

Products affected by CVE-2014-5068

Microsemi » S350i » Version: N/A

cpe:2.3:h:microsemi:s350i:-
Microsemi » S350i Firmware » Version: 2.70.15

cpe:2.3:o:microsemi:s350i_firmware:2.70.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-5068

Products

Pricing

Contact Us