NVD

Id
32768  
Name
CVE-2014-4870  
Description
/opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 does not properly validate parameters, which allows local users to gain privileges by leveraging the sudo configuration.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2014-10-07  
Modified Date
2014-10-07  
Seq
2014-4870  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
172249 32768 CVE-2014-4870 VU#111588  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
15690 JVNDB-2014-004565 Brocade Vyatta 5400 vRouter 上で稼働する /opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl における権限を取得される脆弱性 Brocade Vyatta 5400 vRouter 上で稼働する /opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl は、パラメータを適切に検証しないため、権限を取得される脆弱性が存在します。 CVE-2014-4870 72159 CVE-2014-4870 32768 7.2 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-004565.html 2014-09-26 2014-10-08 View