NVD

Id
36168  
Name
CVE-2014-9466  
Description
Open-Xchange (OX) AppSuite and Server before 7.4.2-rev42, 7.6.0 before 7.6.0-rev36, and 7.6.1 before 7.6.1-rev14 does not properly handle directory permissions, which allows remote authenticated users to read files via unspecified vectors, related to the "folder identifier."  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2015-02-17  
Modified Date
2015-02-18  
Seq
2014-9466  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
184829 36168 CVE-2014-9466 http://packetstormsecurity.com/files/130379/Open-Xchange-Server-6-OX-AppSuite-7.6.1-Exposure.html  View
184830 36168 CVE-2014-9466 20150212 Open-Xchange Security Advisory 2015-02-12  View
184831 36168 CVE-2014-9466 72587  View
184832 36168 CVE-2014-9466 1031744  View
184833 36168 CVE-2014-9466 openxchange-cve20149466-info-disc(100867)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
19045 JVNDB-2014-007920 Open-Xchange AppSuite および Open-Xchange Server におけるファイルを読まれる脆弱性 Open-Xchange (OX) AppSuite および Open-Xchange Server は、ディレクトリのパーミッションを適切に処理しないため、ファイルを読まれる脆弱性が存在します。 CVE-2014-9466 76759 CVE-2014-9466 36168 4 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-007920.html 2014-12-17 2015-02-23 View