Vulnerability Details CVE-2014-8149
OpenDaylight defense4all 1.1.0 and earlier allows remote authenticated users to write report data to arbitrary files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://www.openwall.com/lists/oss-security/2015/01/22/1
- http://www.securityfocus.com/bid/72280
- https://git.opendaylight.org/gerrit/#/c/13972/
- https://git.opendaylight.org/gerrit/#/c/14088/
- https://wiki.opendaylight.org/view/Security_Advisories
- http://www.openwall.com/lists/oss-security/2015/01/22/1
- http://www.securityfocus.com/bid/72280
- https://git.opendaylight.org/gerrit/#/c/13972/
- https://git.opendaylight.org/gerrit/#/c/14088/
- https://wiki.opendaylight.org/view/Security_Advisories
Products affected by CVE-2014-8149
-
cpe:2.3:a:opendaylight:defense4all:1.1.0