Vulnerability Details CVE-2017-14614
Directory traversal vulnerability in the Visor GUI Console in GridGain before 1.7.16, 1.8.x before 1.8.12, 1.9.x before 1.9.7, and 8.x before 8.1.5 allows remote authenticated users to read arbitrary files on remote cluster nodes via a crafted path.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2017-14614
-
cpe:2.3:a:gridgain:gridgain:1.7.15
-
cpe:2.3:a:gridgain:gridgain:1.8.1
-
cpe:2.3:a:gridgain:gridgain:1.8.10
-
cpe:2.3:a:gridgain:gridgain:1.8.11
-
cpe:2.3:a:gridgain:gridgain:1.8.2
-
cpe:2.3:a:gridgain:gridgain:1.8.3
-
cpe:2.3:a:gridgain:gridgain:1.8.4
-
cpe:2.3:a:gridgain:gridgain:1.8.5
-
cpe:2.3:a:gridgain:gridgain:1.8.6
-
cpe:2.3:a:gridgain:gridgain:1.8.7
-
cpe:2.3:a:gridgain:gridgain:1.8.8
-
cpe:2.3:a:gridgain:gridgain:1.8.9
-
cpe:2.3:a:gridgain:gridgain:1.9.1
-
cpe:2.3:a:gridgain:gridgain:1.9.2
-
cpe:2.3:a:gridgain:gridgain:1.9.3
-
cpe:2.3:a:gridgain:gridgain:1.9.4
-
cpe:2.3:a:gridgain:gridgain:1.9.5
-
cpe:2.3:a:gridgain:gridgain:1.9.6
-
cpe:2.3:a:gridgain:gridgain:8.0.0
-
cpe:2.3:a:gridgain:gridgain:8.0.1
-
cpe:2.3:a:gridgain:gridgain:8.0.2
-
cpe:2.3:a:gridgain:gridgain:8.0.3
-
cpe:2.3:a:gridgain:gridgain:8.0.4
-
cpe:2.3:a:gridgain:gridgain:8.1.1
-
cpe:2.3:a:gridgain:gridgain:8.1.2
-
cpe:2.3:a:gridgain:gridgain:8.1.3
-
cpe:2.3:a:gridgain:gridgain:8.1.4