Command Injection Vulnerability in Symantec Web Gateway
CVE-2014-7285

Currently unrated

Key Information:

Vendor: Symantec
Status: Web Gateway
Vendor: CVE Published:; 17 December 2014

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 70%

Summary

The management console on the Symantec Web Gateway appliance before version 5.2.2 is susceptible to a command injection vulnerability. This flaw allows remote authenticated users to execute arbitrary operating system commands by injecting malicious command strings through unspecified PHP scripts. Successful exploitation of this vulnerability could enable attackers to gain unauthorized control over the system, potentially leading to data breaches or further compromise of the network.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

Metasploit exploit module for CVE-2014-7285
Created by Rapid7

References

http://www.exploit-db.com/exploits/36263

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/71620

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1031386

vdb-entryx_refsource_SECTRACK

EPSS Score

70% chance of being exploited in the next 30 days.

Timeline

🟡
Public PoC available
Feb 27, 2015
👾
Exploit known to exist
Feb 27, 2015
Vulnerability published
Dec 17, 2014
Vulnerability Reserved
Oct 2, 2014