CVE-2014-2084

Skybox View Appliances - Info Disclosure

Title source: llm
STIX 2.1

Description

Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain sensitive information via a request to (1) scripts/commands/getSystemInformation or (2) scripts/commands/getNetworkConfigurationInfo, cause a denial of service (reboot) via a request to scripts/commands/reboot, or cause a denial of service (shutdown) via a request to scripts/commands/shutdown.

Exploits (2)

exploitdb WRITEUP
by Luigi Vezzoso · textdoshardware
https://www.exploit-db.com/exploits/33328
exploitdb WRITEUP
by Luigi Vezzoso · textwebappshardware
https://www.exploit-db.com/exploits/33327

References (5)

Core 5
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33327
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/106842
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33328
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/67352

Scores

EPSS 0.2813
EPSS Percentile 96.5%

Details

CWE
CWE-264
Status published
Products (6)
skyboxsecurity/skybox_view_appliance
skyboxsecurity/skybox_view_appliance_iso 6.3.31-2.14
skyboxsecurity/skybox_view_appliance_iso 6.3.33-2.14
skyboxsecurity/skybox_view_appliance_iso 6.4.42-2.54
skyboxsecurity/skybox_view_appliance_iso 6.4.45-2.56
skyboxsecurity/skybox_view_appliance_iso 6.4.46-2.57
Published May 17, 2014
Tracked Since Feb 18, 2026