NVD

Id
33075  
Name
CVE-2014-5393  
Description
Directory traversal vulnerability in the JobScheduler Operations Center (JOC) in SOS JobScheduler before 1.6.4246 and 1.7.x before 1.7.4241 allows remote authenticated users with the info permission to read arbitrary files in the webroot via unspecified vectors.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2014-09-11  
Modified Date
2014-09-11  
Seq
2014-5393  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
173533 33075 CVE-2014-5393 http://packetstormsecurity.com/files/128192/JobScheduler-Path-Traversal.html  View
173534 33075 CVE-2014-5393 http://www.christian-schneider.net/advisories/CVE-2014-5393.txt  View
173535 33075 CVE-2014-5393 20140907 CVE-2014-5393 Path Traversal to Sensitive Files in Webroot in "JobScheduler"  View
173536 33075 CVE-2014-5393 http://www.sos-berlin.com/modules/news/article.php?storyid=73  View
173537 33075 CVE-2014-5393 http://www.sos-berlin.com/modules/news/article.php?storyid=74  View
173538 33075 CVE-2014-5393 jobscheduler-cve20145393-dir-traversal(95796)  View
173539 33075 CVE-2014-5393 https://change.sos-berlin.com/browse/JS-1205  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
15272 JVNDB-2014-004147 SOS JobScheduler の JobScheduler Operations Center におけるディレクトリトラバーサルの脆弱性 SOS JobScheduler の JobScheduler Operations Center (JOC) には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2014-5393 72682 CVE-2014-5393 33075 4 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-004147.html 2014-09-02 2014-09-12 View