CVE

Id
69888  
CVE No.
CVE-2014-2593  
Status
Candidate  
Description
The management console in Aruba Networks ClearPass Policy Manager 6.3.0.60730 allows local users to execute arbitrary commands via shell metacharacters in certain arguments of a valid command, as demonstrated by the (1) system status-rasession and (2) network ping commands.  
Phase
Assigned (20140324)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
667528 69888 CVE-2014-2593 MISC:https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2593  View
667529 69888 CVE-2014-2593 CONFIRM:http://www.arubanetworks.com/support/alerts/aid-050214.asc  View
667530 69888 CVE-2014-2593 BID:69391  View
667531 69888 CVE-2014-2593 URL:http://www.securityfocus.com/bid/69391  View
667532 69888 CVE-2014-2593 OSVDB:109662  View
667533 69888 CVE-2014-2593 URL:http://osvdb.org/show/osvdb/109662  View
667534 69888 CVE-2014-2593 XF:aruba-clearpass-cve20142593-command-exec(95491)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
13383 JVNDB-2014-002258 HP Integrated Lights-Out 2 のサーバにおけるサービス運用妨害 (DoS) の脆弱性 HP Integrated Lights-Out 2 (別名 iLO 2) のサーバには、サービス運用妨害 (DoS) 状態にされる脆弱性が存在します。 CVE-2014-2601 69888 7.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002258.html  View