CVE-2014-2625

Currently unrated

Key Information:

Vendor: HP
Status: Network Virtualization
Vendor: CVE Published:; 26 July 2014

Summary

Directory traversal vulnerability in the storedNtxFile function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to read arbitrary files via crafted input, aka ZDI-CAN-2023.

References

http://www.securitytracker.com/id/1030624

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/60418

third-party-advisoryx_refsource_SECUNIA

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 26, 2014
Vulnerability Reserved
Mar 24, 2014