CVE-2014-2959
Last modified
CVE-2014-2959 is a vulnerability of currently unknown severity. logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter.. EPSS estimates a 2.96% chance of exploitation in the next 30 days.
Description
logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dell | Powervault Ml6000 Firmware | <= i8.2.0.1_\(641g.gs003\) |
| Dell | Powervault Ml6000 | 32u |
| Dell | Powervault Ml6000 | 41u |
| Quantum | Scalar I500 Firmware | <= i8.2.2.1_\(646g.gs002\) |
| Quantum | Scalar I500 | 5u |
| Quantum | Scalar I500 | 14u |
| Quantum | Scalar I500 | 23u |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-2959?
How severe is CVE-2014-2959?
How do I fix CVE-2014-2959?
Are you affected by CVE-2014-2959?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST