What is CVE-2014-2276?

CVE-2014-2276 is a vulnerability in Emc Connectrix_manager, classified under CWE-264. Published 2014-03-21.

Is CVE-2014-2276 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Emc Connectrix_manager

CVE-2014-2276

The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtain sensitive informa…

EPSS: 0.004 (63.2th percentile) — read the EPSS interpretation.

Affected products

Emc Connectrix_manager
N/a — versions n/a

Weakness classification (CWE)

CWE-264

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

1029939 (vdb-entry, x_refsource_SECTRACK)
57513 (x_refsource_SECUNIA, third-party-advisory)
66308 (vdb-entry, x_refsource_BID)
connectrix-cve20142276-info-disc(91987) (vdb-entry, x_refsource_XF)
20140318 ESA-2014-018: EMC Connectrix Manager Converged Network Edition Information Disclosure Vulnerability (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2014-2276?: CVE-2014-2276 is a vulnerability in Emc Connectrix_manager, classified under CWE-264. Published 2014-03-21.
Is CVE-2014-2276 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.