CVE-2014-0644

EMC Cloud Tiering Appliance 10-SP1 - XML External Entity Injection via API Login Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-0644. PoCs published by Brandon Perry, including Metasploit module auxiliary/gather/emc_cta_xxe.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated XXE (XML External Entity) vulnerability in EMC Cloud Tiering Appliance v10.0, allowing arbitrary file read via a crafted XML payload in the login request.

Description

EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote attackers to read arbitrary files via an api/login request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, as demonstrated by reading the /etc/shadow file.

Exploits (2)

exploitdb WORKING POC
by Brandon Perry · textwebappsmultiple
https://www.exploit-db.com/exploits/32623

This exploit demonstrates an unauthenticated XXE (XML External Entity) vulnerability in EMC Cloud Tiering Appliance v10.0, allowing arbitrary file read via a crafted XML payload in the login request.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: EMC Cloud Tiering Appliance v10.0
No auth needed
Prerequisites: Network access to the target · XML parsing enabled on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/emc_cta_xxe.rb

This Metasploit module exploits an unauthenticated XXE vulnerability in EMC CTA v10.0 to read arbitrary files from the server's filesystem. It crafts a malicious XML payload with an external entity reference to exfiltrate file contents via an API endpoint.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: EMC CTA v10.0
No auth needed
Prerequisites: Network access to the target server · Target server running EMC CTA v10.0 with vulnerable API endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2014-04/0094.html
Various Sources x_refsource_misc
https://gist.github.com/brandonprry/9895721
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Mar/426

Scores

EPSS 0.5334
EPSS Percentile 98.8%

Details

CWE
CWE-200
Status published
Products (2)
emc/cloud_tiering_appliance
emc/cloud_tiering_appliance_software 10.0 (2 CPE variants)
Published Apr 17, 2014
Tracked Since Feb 18, 2026