9.3
CVE-2014-2196
- EPSS 2.98%
- Published 26.05.2014 00:25:31
- Last modified 12.04.2025 10:46:40
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
Cisco Wide Area Application Services (WAAS) 5.1.1 before 5.1.1e, when SharePoint prefetch optimization is enabled, allows remote SharePoint servers to execute arbitrary code via a malformed response, aka Bug ID CSCue18479.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Wide Area Application Services Version5.1.1
Cisco ≫ Wide Area Application Services Version5.1.1 Updatea
Cisco ≫ Wide Area Application Services Version5.1.1 Updateb
Cisco ≫ Wide Area Application Services Version5.1.1 Updatec
Cisco ≫ Wide Area Application Services Version5.1.1 Updated
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Type | Source | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 2.98% | 0.86 |
Source | Base Score | Exploit Score | Impact Score | Vector string |
---|---|---|---|---|
nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-94 Improper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.