Skip to main content
CVE-2014-8423 CRITICAL POC THREAT Emergency

Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 41.7%.

Information Disclosure Vap2500 Firmware
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
41.7%
Threat
4.8
CVE-2014-7178 CRITICAL POC THREAT Emergency

Enalean Tuleap before 7.5.99.6 allows remote attackers to execute arbitrary commands via the User-Agent header, which is provided to the passthru PHP function. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 10.4%.

PHP Information Disclosure Tuleap
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
10.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy